Section 31.1.4.2 – Westermo RedFox Series User Manual

Westermo OS Management Guide

Version 4.17.0-0

31.1.4.2

1-to-1 style NAT

1-to-1 NAT, also called Full NAT, maps an entire network block in a one-to-one
fashion.

31.1.4.2.1

Forward 1-to-1 NAT

Public Network (Internet)

Host

Host

.79

.33

1−TO−1

NAT

Gateway

.1

Ex: 10.20.30.0/24

Inbound Interface

Web

Server

.2

IP Destination

192.168.0.2

IP Destination
10.20.30.2

Internal/Private Network

192.168.0.0/24

External (public) IP network

Figure 31.6: 1-to-1 NAT mapping external IP addresses to internal addresses.

A 1-to-1 NAT rule is defined by an inbound interface and two network blocks, the
externally (publicly) visible network block and the internal block (typically private
IP addresses). IP packets entering the router through the inbound interface tar-
geted to the external network will be transformed so they become targeted to the
internal block instead (see

fig. 31.6

). Packets going to the first IP in the external

block will be mapped so they go to the first IP in the internal block, packets to the
second external IP to the second internal IP, and so on. This one-to-one mapping
requires that the external and internal network blocks are of the exact same size.

➞ 2015 Westermo Teleindustri AB

699