× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. July 1999

Re: Nat, IP Filter, Etc.


Art,

        You are on the right path.  First, make sure that you have the
AS/400 supporting IP Forwarding.

        Second, make sure you REALLY REALLY REALLY  want to do this !!  Do
you have EXIT programs, and Object security in place on your AS/400, your NT
servers, your presidents PC which has an open share so the secretary can
back it up, etc !!!

        Now if you want to continue then yes, Network Address Translation is
what you want.  Static NAT is a permanent map between two addresses, and is
mostly used to link a Private IP address (RFC-1918) to a public Internet
address, and this is not what you want unless you are connecting to a
service that MUST know what IP you are originating from.

        Traffic is controlled by the PORTS/SERVICES that are open, in V4R4
we gained much more control in Filter rules, and restrictions for IP
connectivity, but you may want to look seriously at the/a FireWall if you
have serious concerns here as the native support is designed to protect the
box, and I am not sure how far or well it extends to pass through
functionality..

        An yes use the OPS NAV to set this up..

        JMS...


-----Original Message-----
From: Art Tostaine, Jr. <Art@link400.com>
To: MIDRANGE-L@midrange. Com <midrange-l@midrange.com>
Date: Thursday, July 01, 1999 5:24 PM
Subject: Nat, IP Filter, Etc.


>I have a 170 running V4R4.  It has a PPP dialup connection to the internet
with a static IP.
>
>I would like any computer on my local network to have access to the
internet.  This would just be
>for mail and light web browsing for one or two userse so I'm not concerned
with the limited bandwith
>to the ISP right now.
>
>Do I need to use NAT?  I've tried to configure it using OpsNav but I am
lost.  Hidden addresses,
>Mapped Address, etc.
>
>I'm pretty sure that I don't want static Nat, I want masquerading Nat.  I
want every address in my
>local lan (192.168.2.xxx) to have total access to the world.  My PPP line
points to static IP
>209.xxx.xxx.xxx.  I also would like to permit TELNET, FTP and WWW traffic
in.  To make things easier
>to start, I'd let all traffic in.
>
>How can I set this up?  I've tried searching red books, they describe what
I want to do, but they
>tell me to press help while configuring, and I'm lost there.
>
>Thanks.
>
>Art Tostaine, Jr.
>CCA, Inc.
>Jackson, NJ 08527
>
>+---
>| This is the Midrange System Mailing List!
>| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
>| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
>| To unsubscribe from this list send email to
MIDRANGE-L-UNSUB@midrange.com.
>| Questions should be directed to the list owner/operator:
david@midrange.com
>+---

+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.