DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

Help with NAT / non NAT on 2130Vn

More
09 Jun 2011 16:59 #68179 by know-dice
Replied by know-dice on topic Re: Help with NAT / non NAT on 2130Vn
Very similar to my set-up except I have a static route that points my public sub-net to my NAT LAN network which shows in the routing table.
Also, all my public hosts are wired not WiFi

What is your third line down?

1. Is your ISPs gateway address
2. Is your public network
3. ?
4. Your LAN

Code:
Destination Gateway Genmask Flags Metric Ref Use Iface 81.XXX.81.187 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 81.XXX.YYY.96 0.0.0.0 255.255.255.224 U 0 0 0 br-lan 81.XXX.YYY.0 0.0.0.0 255.255.255.0 U 0 0 0 ppp0 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 ppp0


My table from 2130N
192.168.AAA.BBB is the LAN address of the Vigor (i.e. default gateway for NAT hosts)
Code:
Destination Gateway Genmask Flags Metric Ref Use Iface 195.ZZZ.130.36 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 81.XXX.YYY.240 192.168.AAA.BBB 255.255.255.248 UG 0 0 0 br-lan 81.XXX.YYY.240 0.0.0.0 255.255.255.248 U 0 0 0 br-lan 192.168.AAA.0 81.XXX.YYY.241 255.255.255.0 UG 0 0 0 br-lan 192.168.AAA.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 ppp0

Please Log in or Create an account to join the conversation.

More
09 Jun 2011 17:30 #68180 by vmrsss
Replied by vmrsss on topic Re: Help with NAT / non NAT on 2130Vn

know-dice wrote:
1. Is your ISPs gateway address
2. Is your public network
3. ?



think it's the rest of the 81.XXX network, all addresses on in the /27 netmask will not match entry 2, will match entry 3 and be forwarded to the ISP default GW. THink it's not required because covered by entry 5, but it will not hurt.

I am noticing something strange now: from the 192.168 network, if I try to access any of the 81.XXX machines, I reach the 2130 (81.XXX.YYY.97). The other way around, from 81.XXX.YYY.98 cannot do anything, not even ping 81.XXX.YYY.97 ...

hmmm

Please Log in or Create an account to join the conversation.

More
09 Jun 2011 18:55 #68181 by vmrsss
Replied by vmrsss on topic Re: Help with NAT / non NAT on 2130Vn
know-dice, what did you put in the LAN >> MAC Address Table page?

do you have any static MAC configuration?

Please Log in or Create an account to join the conversation.

More
09 Jun 2011 19:07 #68182 by know-dice
Replied by know-dice on topic Re: Help with NAT / non NAT on 2130Vn
Nothing - it's on Auto for all ports

Please Log in or Create an account to join the conversation.

More
09 Jun 2011 19:28 #68184 by vmrsss
Replied by vmrsss on topic Re: Help with NAT / non NAT on 2130Vn
and what version of the firmware do you have? 1.5 or 1.5.1?

and what do you have in the WAN >> 802.1Q VLAN Tag Configuration?

There is some very interesting stuff here: if I assign a LAN port to a bridge, DHCP gets turned off on that LAN. The manual says:

LAN/NAT: Such value is constant and fixed. All the data will be transmitted by NAT through WAN port

Bridge 1/2/3: LAN port (P2-P4) selected here will ask a Public IP address from ISP for transmitting data from PC directly without NAT. The range of ID number you can type is from 2 – 4096. Each ID setting must be unique and different with WAN VLAN ID.



Ah, ah: sounds related, although it's essentially impossible to understand what is trying to say... Let me try:

VLAN 1 is fixed for NAT (always includes P1): all the data will in this VLAN will undergo NAT before going out on WAN.

Bridge 1/2/3 can include the ports P2-P4 and will go out with a public IP (where is it taken from I dont understand). Also, when I enable Multi-VLAN Setup, I lose PPPoE. perhaps I did something wrong, will try again.

What do you think?

Please Log in or Create an account to join the conversation.

More
09 Jun 2011 20:06 #68186 by know-dice
Replied by know-dice on topic Re: Help with NAT / non NAT on 2130Vn
Currently running 1.5.1 but also used 1.5.0.1 and that worked Ok.

Most of my settings here - 2130N Configs

Please Log in or Create an account to join the conversation.

Moderators: ChrisSami