Chris Buechler wrote:
Does somebody know a consumer grade DSL-Router who does NAT with port
randomization "out of the box"?
Not sure if my Westell does or not, I use the IP passthrough so my
firewall gets the public IP and would suggest you do the same if
possible. I do use its NAT for my dual WAN test network, but don't
really care what it does for that usage.
I found a simple workaround for this issue at least for the combination
Zyxel DSL-Router / pfsense:
Instead of using SUA (many to one NAT) use 1:1 NAT from xDSL to pfSense.
Then the port Numbers are not affected. And it's better than switch to
bridge mode, because there is no more control over the router via SNMP,
Pings, Management and more.
This should work with other routers, with different naming for NAT.
Beat Siegenthaler
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
