nat question



  • hello guys, Lan clients access to the internet with the wan address: random ports
    I want to determine lan client outgoing port range
    for example :

    lan clients -> wan address | port range | destination | port range

    10.10.10.2 -> xxx.xxx.xxx.xxx | 6000-7000 | anywhere | any

    I need to sure 10.10.10.2 clients access to internet via xxx.xxx.xxx.xxx:6000-7000 ip and ports

    thanks for help



  • This is easy.

    First you'll have to make sure you turn off auto-rule generation (if you haven't already), because it'll use all available ports, and you can't edit the auto-generated rule.

    Then create a rule that allows outbound NAT, and in the "Port or Range" box (with the description 'Enter the external source Port or Range used for remapping the original source port on connections matching the rule.') put in 6000:7000


Log in to reply