• March 28, 2024, 02:36:55 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Inbound IP Translation  (Read 7796 times)

rjesse

  • Level 1 Member
  • *
  • Posts: 21
Inbound IP Translation
« on: October 26, 2012, 09:47:26 PM »

I have a server running inside my DSR-250 that needs to see the real IP of connecting clients ( the app handles security differently depending on the IP).

I have configured a firewall rule to forward the external port to the private port on the server, this all works fine, except that router is translating all inbound IPs to the Firewall Private IP address.

My EBR-2310 does not do this, it passes the external IP Address through.

Is there a way to fix this?   

The docs indicate that there is a DMZ option but this does not show up in any of the gui configs.

Rick
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Inbound IP Translation
« Reply #1 on: October 30, 2012, 07:49:03 AM »

I presume that this router is working as designed as most other D-Link routers. This is call NAT and it handles the public IP address that the WAN side gets and translates that to the private LAN side. The only why to get thru this and the firewall is to use the DMZ. The EBR may have not have had any NAT capabilities which is why you might not have seen this. Most all newer routers use NAT.

Is the FW up to date? I would update the FW to see if the DMZ option appears in the UI. If it does not, I would phone contact D-Link support and get advanced level help on this.

Let us know how it goes.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

rjesse

  • Level 1 Member
  • *
  • Posts: 21
Re: Inbound IP Translation
« Reply #2 on: October 30, 2012, 12:22:59 PM »

Finally got through to Dlink, there is a flaw with this box.  When PPTP is turned on it NAT's/Proxies inbound traffic.

An no this is not how a firewall is supposed to work, NATing should only translate internal to your public on the way out, public addresses should be shown internally otherwise how would you log/control who is connecting to your systems.

The claim is they are working on a fix, not sure when, the solution they presented was to turn of PPTP, not really an option for me as that is why I bought the box.

-----
Dear Customer:

After check the config, we find the root cause is from PPTP server, this is identified a bug, RD is fixing it now.
-----

I guess a a trip back to the store to see if I can get a refund.

Rick
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Inbound IP Translation (BUG)
« Reply #3 on: October 30, 2012, 12:56:11 PM »

Glad they were able to give you feedback. Hope you will find one that works well for you. Sorry it didn't work out for you. Thanks for sharing the info.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.