NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

BillisSaved's avatar
BillisSaved
Aspirant
May 25, 2016
Solved

SRX5308 Range mismatch in WAN Destination IP addresses and LAN server IP addresses

 Good afternoon everyone,   I hope your day is going well. I'm attempting to configure an inbound IPv4 firewall rule that will forward a particular port range to a specific private IP address range...
  • Danthem's avatar
    May 25, 2016

    I think it's important to know your end goal here.

     

    Normally you do a one to one forwarding;
    *TCP port 80 coming in on WAN1 forward to internal IP 192.168.1.10

     

     

    You can also do port translation;

    *TCP port 8080 coming in on WAN1, translate to port 80 and forward to internal IP 192.168.1.20

     

     

    The internal range thing requires you to have a matching amount of WAN addresses as the amount of internal addresses you enter in the internal address range. So in this example:

    lanwanrules.PNG

    The way it will work is;

    • HTTP (port 80) traffic coming in on WAN IP 5.5.5.1 will be forwarded to internal IP 1.1.1.1
    • HTTP (port 80) traffic coming in on WAN IP 5.5.5.2 will be forwarded to internal IP 1.1.1.2
    • HTTP (port 80) traffic coming in on WAN IP 5.5.5.3 will be forwarded to internal IP 1.1.1.3

    etc. 

     

    The error message you're getting is if you have entered a shorter range of WAN addresses compared to private LAN ones. But this is not probably the way you want to set it up anyways, to be honest I can't really think of any scenario where I would use this range feature. 

     

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More