Page 1 of 1
Route a public address block without NAT
Posted: Fri Aug 08, 2014 7:27 pm
by sammachin
I've got a public assignment from my ISP (90.56.56.56/29), I would like to be able to route this through my 7800DX without it being NAT'd but I would still like the private 192.168.1.0/24 address range on my LAN to get NAT'd to the 217.1.1.1/32 of my DSL connection.
I can't seem to do this, if I setup the /29 as an IP alias I have to disable NAT on the WAN connection in order for those addresses to be visable to the internet, however with NAT disabled then my /24 private block can't access the internet.
I could do this with my old draytek 2830, I'm hoping the same is possible with the Billion?
Rgds
Sam
PS I've changed the public blocks slightly for privacy, but the netmasks are correct
Re: Route a public address block without NAT
Posted: Mon Aug 11, 2014 10:07 am
by billion_fan
Try using the One-to-One NAT function found under 'NAT'
Re: Route a public address block without NAT
Posted: Sat Sep 06, 2014 4:47 pm
by robhorton
Any chance you could elaborate a little on this - I'm having the same issue? I can get it to do what I want by telnetting in then doing a
Code: Select all
iptables -A POSTROUTING --source 10.165.0.0/16 -j MASQUERADE
but that's not entirely satisfactory as it'll get lost each time the router gets reset (unless there's some way to make that permenent..?).
This must be a reasonably common thing to want to do so I'm surprised there isn't an obvious way to do it in the web interface
Re: Route a public address block without NAT
Posted: Mon Sep 08, 2014 9:33 am
by billion_fan
robhorton wrote:Any chance you could elaborate a little on this - I'm having the same issue? I can get it to do what I want by telnetting in then doing a
Code: Select all
iptables -A POSTROUTING --source 10.165.0.0/16 -j MASQUERADE
but that's not entirely satisfactory as it'll get lost each time the router gets reset (unless there's some way to make that permenent..?).
This must be a reasonably common thing to want to do so I'm surprised there isn't an obvious way to do it in the web interface
Try follow the attached screen shots, use the 'One-to-One NAT' function as shown, as you can see on the attached screen shots, I have mapped a internal IP to a 'Global IP Address', and on the device when I check 'whatsmyip' it shows as one of my global IP addresses.
Any device that is not mapped using the ' 'One-to-One NAT' will work behind the normal IP (the IP listed on the status page of the router)