Metacom MC601 Router Page 28
User Manual
• In a future version the user may specify traffic between any of the available interfaces and
forward data between them.
• If there are errors in one of the rules the rule number will be displayed in the output. i.e ***
Invalid rule <num> ***
Here are some things to consider when adding rules:
• The rules are implemented internally using the linux iptables utility
• If eth1 is used for an interface then the interface needs to be enabled.
• If a destination port is specified then the direction may not be <->.
• Internally eth0 eth1 or eth0 eth0 will generate a forward rule between the interfaces
using protocol, IPs and destination port.
• New connections should be allowed if the destination is both ways (ie. <->)
• Internally eth0 <-> eth1 will generate a forward rule between the interfaces using only the
protocol.
• A DNAT (Destination nat) is only allowed for WAN (protocol must be set).
• The router port is ignored for directions or <->.
• Internally WAN<-, WAN<->, VPN<- or VPN<-> generate a forward rule using protocol, IPs
and destination port.
• If a firewall nat is used (section 3.5.5) then all packets are forwarded from ppp0 (ie.WAN) to
the destination IP/network and visa versa.
Cellular Continuum Series
Copyright © Metacom (Pty) Ltd
To Next Page
Loading...