I should add that I can ping .153, but not .154 or .155, and TELNET [IP] 25 fails to connect for all 3. Further, when I configure WAN to LAN logging in the router, I see no connections when I try to Telnet to 25 on any of the 3 IPs.
THis is a business-class ISP. They do not block TCP25; have been using that for years with a single server on .153, one of the 3 IPs I'm now attempting to use with 1-1.
Forwarding works fine with single-server rules--likewise, have used that all along. The problem only occurs with 1-1 NAT rules.
One thing I noticed when setting it back to single-server rules...if I just disable the 1-1 Rules and enable the single-server Rules, the routing table still shows 1-1 Rules, and the single-server inbound Rules didn't work; had no inbound connectivity. Outbound (all outbound permitted) was OK.
So I gather that "disable," in NetGear-speak, means leave the routing table modified for the rules created, but block connections.
I didn't look at the routing table when I had 1-1 set up, but I guess what this tells me is that the routing table is a mess when you have both sets of rules in place, even though only 1 set (either single-server or 1-1) is enabled. Does that sound correct? IOW, I need to delete--not just disable--the Inbound rules that are not relevant to the 1-1 scenario?
I'll try it next opportunity. But meantime, if you can confirm my observations, I'll try it with a lot more confidence!
