User Guide

Appendices.....131

Appendix I:IPMasquerading for 1-to-1 NAT

To set up a 1-to-1 NAT, you will first need to create a virtual public interface. The virtual public

interface will appear within the Firewall and NAT screens of the appliance:

Input /usr/bin/fwnat/fwnat-alias.sh

Usage: ./fwnat -alias [-h] -c <add|del|mod> -i <eth0 | eth1> -n <ifname> -a <cidr formated IP> -b

Syntax Option

-h Displays the command syntax.

-c Adds, deletes or modifies an aliased interface.

-i Alias for eth0 | eth1

-n Name of the alias up to eight characters.

-a IP address in CIDRformat.

-b Broadcast address.

Virtual Public Interface Syntax and Options

For example:Use the following command to create the public IP alias for the appliance to listen for

incoming traffic:

/usr/bin/fwnat/fwnat-alias.sh -c add -i eth0 -n ILOalias -a 192.168.200.17/24 -b

192.168.200.255

For more information, see Firewall and NAT on page 90.