RV082 - OneToOne NAT disables Firewall!?

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by TeHa, Sep 19, 2007.

  1. TeHa

    TeHa LI Guru Member

    Hi Folks,
    I want to use a RV082 as a router and firewall. I need OneToOne-NAT to map the external IPs to the internal ones; this works as it should.
    BUT: As soon as 1to1-NAT is enabled, the access-rules I've configured don't work anymore; the box just forwards anything and everything to the machines behind it.
    This being as it is, I could just rip out the box, give the machines external adresses, and leave them wide open on the public net. :thumbdown:

    I know this isn't a new problem, but I haven't been able to find a solution on the net..

    Ideas, anyone?

    Puzzled regards

    p.S.: Firmware version 1.3.5 (Jan 11 2007 00:22:46)
  2. pablito

    pablito Network Guru Member

    Are you sure about that? I don't find that to be the case on mine. I have a list of allows followed by a deny all and that seems to do the job. I constantly see a stream of denied entries in the logs pointing at my IPs.

    Make sure you don't have port forwards for any of those IPs which of course you wouldn't need but that prevents your deny rules from being obeyed.
  3. TeHa

    TeHa LI Guru Member

    Well, there are no port forwarding rules set (as that would void the idea of onetoone-nat ;) ), and I've set a few Access rules, followed by the default reject rule.
    Have you added a reject-rule of your own in addition to the default one?

  4. pablito

    pablito Network Guru Member

    Yes, add your own deny all rule. The default is not touched because of a hidden allow rule that the 1-1 created.
  5. TeHa

    TeHa LI Guru Member

    Thanks, that does it :)
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice