Manualshelf

User`s guide

ManualsBrandsDigi ManualsComputer equipmentTransPort WR41
71727374757677787980
75
This mode behaves like NAT but in addition to changing the source IP of the packet from
the private host it can also change the source port number. This is required if more than
one private host attempts to connect using the same local port number to the same
Internet host on the same remote port number. If such a scenario were to occur with
NAT the router would be unable to determine which private host to route the returning
packets to and the connection would fail.
NAT Source IP address
If specified, and NAT mode has been set to “NAT” or “NATP” for this interface, then the
source address of packets being sent out this interface is changed to this address, rather
than the interface address.
Enable IPsec on this interface
The IPSec parameter is used to enable or disable IPSec processing on this interface. If
this box is ticked, packets sent or received on this interface must pass through the IPSec
code before being transmitted. IPSec may drop the packet, pass it unchanged, or encrypt
and encapsulate within an
IPSec packet.
Keep Security Associations (SAs) when this Mobile interface is disconnected
This checkbox will configure the router to keep any existing IKE and IPsec associations
should the link drop. This is usually applied on head-end routers with fixed IP addresses.
Use interface X, Y for the source IP address of IPsec packets
By default, the source IP address for an IPSec Eroute will be the IP address of the
interface on which IPSec was enabled. By setting this parameter to either a PPP or
Ethernet interface, the source IP address used by IPSec will match that of the Ethernet or
PPP interface specified.
Enable the firewall on this interface
The Firewall parameter is used to turn Firewall script processing “On” or “Off” for this
interface.
Note:
If the firewall is enabled on an interface and with the absence of any firewall rules, the
default action is to block ALL traffic.
To configure the firewall see Configuration Security > Firewall
Limit the data transmitted over this interface
On W-WAN networks (where charging is based on the amount of data transferred as
opposed to
time spent on-line), this parameter may be used to specify a data limit after which
the unit will create
an entry in the event log to indicate that this amount of data has been
transferred. For example,
if your monthly tariff includes up to 5Mb of data before you are
charged an “excess”, you might
set the Data limit warning level to 4000. This would cause the
unit to place a warning entry in the event log once you had transferred 4Mb. This event could be
used to trigger an email alert message, SNMP trap or SMS alert message.
Issue a warning event after
Enter the maximum data to be transmitted before a warning entry is generated in the
eventlog. You have the option to select Kbytes, Mbytes or GBytes via the drop-down box.
Stop data from being transmitted after