Tripp Lite B092-016

To Next Page

To Previous Page

• FindtheSource Networktoberouted,andthenticktherelevantDestination Network to enable Forwarding

ForexampletocongureadualEthernetdevicesuchasaB096-048orB096-016ConsoleServerManagementSwitch:

• TheSource Network would the Network Interface and the Destination Network would be Management LAN

IPMasqueradingisgenerallyrequirediftheConsoleServerwillberoutingtotheInternet,oriftheexternalnetworkbeing

routed to does not have routing information about the internal network behind the Console Server.

IPMasqueradingperformsSourceNetworkAddressTranslation(SNAT)onoutgoingpackets,tomakethemappearlikethey've

comefromtheConsoleServer(ratherthandevicesontheinternalnetwork).Whenresponsepacketscomebackdeviceson

theexternalnetwork,theConsoleServerwilltranslatethepacketaddressbacktotheinternalIP,sothatitisroutedcorrectly.

This allows the Console Server to provide full outgoing connectivity for internal devices using a single IP Address on the

external network.

By default IP Masquerading is disabled for all networks. To enable masquerading:

• SelectForwarding & Masquerading panel on the System: Firewall menu

• CheckEnable IP Masquerading (SNAT) on the network interfaces where masquerading is be enabled

Generally this masquerading would be applied to any interface that is connecting with a public network such as the Internet.

Chapter 5: Firewall, Failover and Out-of-Band

Tripp Lite B092-016 - Page 77