

The port number is whatever port is used for your server. The Private address is the address of your web server on your private LAN (192.168.17.3). This number will be filled in automatically for you in the Port Mapping tab view.

The apparent address (what the Internet sees) is the public IP address of your gateway (the floating IP number assigned by your ISP). Suppose you have three machines and want to set up a web server To specify an inbound mapping, click on the Port Mapping tab in the main LAN that forms the local end of a connection the local LAN IP addressĪnd port for the particular service to be mapped. Term "Actual Endpoint" to refer to the Endpoint on your Internet sees-your LAN's external IP address and port-and the Refer to the endpoint on your gateway machine that the rest of the The term "Endpoint" to refer to the combination of an To an IP address and protocol port on your private LAN. Translation entry that maps a protocol port on your gateway machine Inbound Port Mapping allows you to manually create a permanent This is the purpose of "Inbound Port Mapping". LAN to be visible to the public Internet, we need a way to createĪ reverse translation entry without initiating the connection from In order to allow servers on your private The public Internet, but this might not be the most convenient way Run all your servers on the gateway machine which is visible to Private LAN and make it visible to the public Internet.

Translation entry allowing the requested web page to be returned This arrangement is ideal for surfing the web from your LAN sinceĮach time your web browser requests a page, it creates a reverse To access the public Internet from inside your LAN, but not the IP Masquerading acts like a firewall allowing you So remains addressed to the gateway (unless a different Exposed It passes through the NAT module unchanged To the gateway machine is not forwarded to the LAN since there is It has no public IP address and traffic addressed Until a host on the LAN initiates contact, it is invisible to the To a host on the Internet that creates a return translation entry. Notice it is the action of sending a packet from the LAN The effect is to hide multiple hosts behind a single public IPĪddress. Whenever a response is received at that port on the gateway, the Translator knows to reverse the process substituting the original IP address and port number on your private LAN. In order to keep track of which host on your LAN the packet came from, it also assigns it an unused protocol port number on the gateway machine. When the Translator sees a packet from your LAN that doesn't originate from the gateway, it changes the source IP address of that packet to the external IP address of the gateway machine. The Network Address Translator in IPNetRouterX is implemented as a Network Kernel Extension that sits between your gateway machine and the public Internet. The basic idea is to disguise IP packets to or from your private LAN so they appear to the rest of the Internet as if they only originate from your gateway machine's external IP address. IP Masquerading works using a technique called "Network Address Translation" (NAT) with extensions for "Port Multiplexing" (NAPT) and "ICMP Translation". This saves you the cost of setting up multiple accounts or getting a block of globally unique IP addresses assigned that your ISP must route (and will charge you for). IPNetRouterX provides a feature called "IP Masquerading" that allows you to connect multiple hosts to the Internet using a single user ISP account and single public IP address. Inbound Port Mapping Inbound Port Mapping
