1:1 Network NAT

With 1:1 NAT you can Map a whole network IP-range into another. This can be handy if you want to maintain a common local ip range like 192.168.1.0/24 but also have the possibilty to connect to each IP from the outside

Common Example: A Tram installed with a lot of devices like: ticketmachines, videocameras or WLAN Accesspoint. The local technican wants to connect

  • to the ticketmachine via 192.168.1.13,
  • to the videocamera via 192.168.1.14
  • and the WLAN accesspoint via 192.168.1.15.

But in the same moment you want to have a remote connection via WLAN and connect to each tram and device idividually. So would you want to have IPs like:

  • to the ticketmachine via 10.10.123.13,
  • to the videocamera via 10.10.123.14
  • and the WLAN accesspoint via 10.10.123.15.

Where 123 would be your vehicle/tram number. So each tram and device can be addressed directly.

To avoid creating 3 or even more NAPT rules you can use the network based rules and do this with only 2 Rules.

Basic Napt Rules

  • Inbound: Map 10.10.123.0/24 to 192.168.1.0/24
  • Outbount: Map 192.168.1.0/24 to 10.10.123.0/24

Configuration

To Configure this scenario all you need are two rules

  • Inbound NAT Rule

  • Outbound NAT Rule