Tamadite
17-11-2004, 22:01
I am using firmware 1.8.1.9 and I have detected that it does not NAT IP addresses that are contained within the data area of packets.
You can see this when using "MSN Remote Assistance". When a PC behind a firewall accepts a remote assistance invitation, on a certain stage the PC behind the firewall informs the remote machine of its IP address and the port that the remote machine should use to get connected. When the packet goes through the firewall, it seems the firewall does inspect the whole packet down to the data field so the firewall does not NAT the LAN IP address that is provided by the host behind the firewall. This results on failed connection since the remote PC is to send a packet with a private IP address, eg. 192.168.1.2. It should be noticed here that it is not the return IP address of the packet (source/destination).
Even when it can not be considered a failure or bug, it is worth saying that such feature can be found in high-end routers (eg. Cisco PIX).
My questions are:
.1. Has this enhancement been implemented on some other firmware release for WL-500g?
.2. What is or could be the impact of this operation on the router? Obviously this will produce an extra-load on router's operations that would affect its throughput.
You can see this when using "MSN Remote Assistance". When a PC behind a firewall accepts a remote assistance invitation, on a certain stage the PC behind the firewall informs the remote machine of its IP address and the port that the remote machine should use to get connected. When the packet goes through the firewall, it seems the firewall does inspect the whole packet down to the data field so the firewall does not NAT the LAN IP address that is provided by the host behind the firewall. This results on failed connection since the remote PC is to send a packet with a private IP address, eg. 192.168.1.2. It should be noticed here that it is not the return IP address of the packet (source/destination).
Even when it can not be considered a failure or bug, it is worth saying that such feature can be found in high-end routers (eg. Cisco PIX).
My questions are:
.1. Has this enhancement been implemented on some other firmware release for WL-500g?
.2. What is or could be the impact of this operation on the router? Obviously this will produce an extra-load on router's operations that would affect its throughput.