I am trying to setup NAT for http on my 2910.

I have tried port redirection and open ports to the same server, however neither work. When I run nmap from an external machine to my ext interface, it is showing the ports as filtered. If I access the private address internally on http, the web server is fine.

I am stumped on this one???

Any ideas?

Many thanks in advance,

Chris

Using wireshark to watch the traffic between the draytek and the destination, it looks as though NAT is not rewriting the source ip address of the incoming tcp packets.

Make sure you have changed the default management port for http on the router. You need to change it to something other than 80 - say 8080 or 8888
But make sure you put :port (ie :8888) on the end of the url when you try to access it[/b]

Hi runningdeere,

I had changed the management ports and the network traffic is getting through the external interface. The problem seems to be that the IP header for the src field is not NAT'd by the draytek, and is going through to my private network unchanged.

Many thanks,

Chris

Could the problem be that the host I am natting to has a default gw different that is another router (i.e. not the draytek doing the natting)?

For this to work, the draytek doing the nat would need to do SNAT (which it appears that it is not doing?

Any ideas?

Many thanks,

Chris