![Moxa DA-710-XPE [41/73] Nat network address translation](/img/pdf.png)
Moxa DA-710-XPE [41/73] Nat network address translation
![Moxa DA-710-XPE [41/73] Nat network address translation](/views2/1199602/page41/bg29.png)
DA-710 Series Linux Managing Communications
3-16
Example 5: Drop TCP packets addressed for port 21.
# iptables –A INPUT –i eth0 –p tcp --dport 21 –j DROP
Example 6: Accept TCP packets from 192.168.0.24 to DA-710-I-LX’s port 137, 138, 139
# iptables –A INPUT –i eth0 –p tcp –s 192.168.0.24 --dport 137:139 –j ACCEPT
Example 7: Log TCP packets that visit DA-710-I-LX’s port 25.
# iptables –A INPUT –i eth0 –p tcp --dport 25 –j LOG
Example 8: Drop all packets from MAC address 01:02:03:04:05:06.
# iptables –A INPUT –i eth0 –p all –m mac --mac-source 01:02:03:04:05:06 –j DROP
ATTENTION
In Example 8, remember to issue the command # modprobe ipt_mac first to load the module
ipt_mac.
NAT (Network Address Translation)
The NAT (Network Address Translation) protocol translates IP addresses used on one network into IP addresses
used on a connecting network. One network is designated the inside network and the other is the outside
network. Typically, the DA-710-LX connects several devices on a network and maps local inside network
addresses to one or more global outside IP addresses, and un-maps the global IP addresses on incoming
packets back into local IP addresses.
ATTENTION
Click on the following links for more information about NAT.
http://www.netfilter.org/documentation/HOWTO//packet
-filtering-HOWTO.html
NAT Example
The IP address of all packets leaving LAN1 are changed to 192.168.3.127 (you will need to load the module
ipt_MASQUERADE):
Содержание
- Da 710 series linux user s manual 1
- Second edition august 2012 1
- Www moxa com product 1
- Copyright notice 2
- Da 710 series linux user s manual 2
- Disclaimer 2
- Technical support contact information 2
- Trademarks 2
- Www moxa com support 2
- Table of contents 3
- Introduction 4
- Attention 5
- Da 710 series linux introduction 5
- Overview 5
- Software specifications 5
- Da 710 series linux introduction 6
- Software components 6
- Da 710 series linux introduction 7
- Da 710 series linux introduction 8
- Da 710 series linux introduction 9
- Da 710 series linux introduction 10
- Da 710 series linux introduction 11
- Software configuration 12
- Starting from a vga console 13
- Connecting from a telnet console 14
- Da 710 series linux software configuration 14
- Connecting from an ssh console 15
- Da 710 series linux software configuration 15
- Linux users 15
- Root bee_notebook root ssh 192 68 27 the authenticity of host 192 68 27 192 68 27 can t be established rsa key fingerprint is 8b ee ff 84 41 25 fc cd 2a f2 92 8f cb 1f 6b 2f are you sure you want to continue connection yes no yes_ 15
- Windows users 15
- Adjusting the system time 16
- Da 710 series linux software configuration 16
- Moxa date fri jun 23 23 30 31 cst 2000 moxa hwclock fri jun 23 23 30 35 2000 0 57748 seconds moxa date 120910002004 thu dec 9 10 00 00 cst 2004 moxa hwclock w moxa date hwclock thu dec 9 10 01 07 cst 2004 thu dec 9 10 01 08 2004 0 33547 seconds moxa 16
- Moxa date hwclock sat jan 1 00 00 36 cst 2000 sat jan 1 00 00 37 2000 0 72941 seconds moxa moxa ntpdate time stdtime gov tw 9 dec 10 58 53 ntpdate207 step time server 220 30 58 2 offset 155905087 84256 sec moxa moxa hwclock w moxa date hwclock thu dec 9 10 59 11 cst 2004 thu dec 9 10 59 12 2004 0 44076 seconds moxa 16
- Ntp client 16
- Setting the time manually 16
- Attention 17
- Da 710 series linux software configuration 17
- Example shell script for updating the system time periodically 17
- How to run the shell script automatically when the kernel boots up 17
- Updating the time automatically 17
- Enabling and disabling daemons 18
- Setting the run level 20
- 10 2 10 21
- Cron daemon for executing scheduled commands 21
- Da 710 series linux software configuration 21
- Minute hour date month week user command 8 root path to your program 21
- 11 2 11 22
- Attention 22
- Da 710 series linux software configuration 22
- Inserting a usb storage device into the computer 22
- Moxa mount dev hda1 on type ext2 rw errors remount ro tmpfs on lib init rw type tmpfs rw nosuid mode 0755 proc on proc type proc rw noexec nosuid nodev sysfs on sys type sysfs rw noexec nosuid nodev procbususb on proc bus usb type usbfs rw udev on dev type tmpfs rw mode 0755 tmpfs on dev shm type tmpfs rw nosuid nodev devpts on dev pts type devpts rw noexec nosuid gid 5 mode 620 dev hdb2 on home type ext2 rw nfsd on proc fs nfsd type nfsd rw rpc_pipefs on var lib nfs rpc_pipefs type rpc_pipefs rw dev sda1 on media usb0 type vfat rw noexec nodev sync noatime gid 25 dmask 0007 fmask 0117 dev sdb1 on media usb1 type vfat rw noexec nodev sync noatime gid 25 dmask 0007 fmask 0117 moxa 22
- Attention 23
- Checking the linux version 23
- Inserting a compactflash card into the computer 23
- 13 2 13 24
- Apt installing and removing packages 24
- Attention 24
- Da 710 series linux software configuration 24
- Moxa apt get install openswan moxa 24
- Moxa apt get remove openswan moxa 24
- Moxa apt get remove openswan purge moxa 24
- Moxa apt get update moxa 24
- Moxa mount o remount rw dev hda1 24
- Moxa umount moxa 24
- Moxa vi etc apt sources list deb cdrom debian gnu linux 5 a _lenny_ official i386 netinst binary 1 20 090817 16 43 lenny main deb cdrom debian gnu linux 5 a _lenny_ official i386 netinst binary 1 200 90817 16 43 lenny main deb http archive debian org debian lenny main deb src http archive debian org debian lenny main deb http security debian org lenny updates main contrib deb src http security debian org lenny updates main contrib deb http volatile debian org debian volatile lenny volatile main deb src http volatile debian org debian volatile lenny volatile main 24
- Attention 25
- Managing communications 26
- Changing the interfaces configuration file 27
- Changing the network settings 27
- Da 710 series linux managing communications 27
- Moxa cd etc network 27
- Moxa etc network vi interfaces 27
- Static ip address 27
- The loopback network interface auto lo iface lo inet loopback the primary network interface auto eth0 iface eth0 inet static address 192 68 27 netmask 255 55 55 broadcast 192 68 55 auto eth1 iface eth1 inet static address 192 68 27 netmask 255 55 55 broadcast 192 68 55 auto eth2 iface eth2 inet static address 192 68 27 netmask 255 55 55 broadcast 192 68 55 27
- Adjusting ip addresses with ifconfig 28
- Configuring multiple lan ports for expansion modules 28
- Da 710 series linux managing communications 28
- Dynamic ip address using dhcp 28
- Moxa etc init d networking restart 28
- Moxa ifconfig eth0 192 68 moxa 28
- Pci device 0x10ec 0x8168 r8169 subsystem net action add drivers attr address 00 90 e8 00 d6 71 attr type 1 kernel eth name eth0 pci device 0x10ec 0x8168 r8169 subsystem net action add drivers attr address 00 90 e8 00 d6 74 attr type 1 kernel eth name eth3 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 c0 26 72 5e 3f attr type 1 kernel eth name eth4 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d3 20 attr type 1 kernel eth name eth5 28
- The primary network interface allow hotplug eth0 iface eth0 inet dhcp 28
- Da 710 series linux managing communications 29
- Pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d3 21 attr type 1 kernel eth name eth6 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d3 22 attr type 1 kernel eth name eth7 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d3 23 attr type 1 kernel eth name eth8 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d2 c8 attr type 1 kernel eth name eth9 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d2 c7 attr type 1 kernel eth name eth10 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d2 c6 attr type 1 kernel eth name eth11 pci device 0x10ec 0x8139 8139too subsystem net action add drivers attr address 00 90 e8 00 d2 c5 attr type 1 kernel eth name eth12 29
- Configuring multiple serial ports for expansion modules 30
- Da 710 series linux managing communications 30
- Irq 16 6 19385 ttym16 ttym23 max baud rate 921600 bps 30
- Root moxa lspci 07 0c serial controller moxa technologies co ltd cp118u 8 port rs 232 422 485 smart universal pci 07 0d pci bridge tundra semiconductor corp device 8100 rev 01 07 0e serial controller moxa technologies co ltd cp118u 8 port rs 232 422 485 smart universal pci 07 0f serial controller moxa technologies co ltd cp118u 8 port rs 232 422 485 smart universal pci 30
- Card 0 kernel ttym16 symlink ttyn0 kernel ttym17 symlink ttyn1 kernel ttym18 symlink ttyn2 kernel ttym19 symlink ttyn3 kernel ttym20 symlink ttyn4 kernel ttym21 symlink ttyn5 kernel ttym22 symlink ttyn6 kernel ttym23 symlink ttyn7 card 1 kernel ttym8 symlink ttyn8 kernel ttym9 symlink ttyn9 kernel ttym10 symlink ttyn10 kernel ttym11 symlink ttyn11 kernel ttym12 symlink ttyn12 kernel ttym13 symlink ttyn13 kernel ttym14 symlink ttyn14 kernel ttym15 symlink ttyn15 card 2 kernel ttym0 symlink ttyn16 kernel ttym1 symlink ttyn17 kernel ttym2 symlink ttyn18 kernel ttym3 symlink ttyn19 kernel ttym4 symlink ttyn20 kernel ttym5 symlink ttyn21 kernel ttym6 symlink ttyn22 31
- Da 710 series linux managing communications 31
- Serial port operation mode 31
- Da 710 series linux managing communications 32
- Disabling the telnet ftp server 32
- Discard dgram udp wait root bin discard discard stream tcp nowait root bin discard telnet stream tcp nowait root bin telnetd ftp stream tcp nowait root bin ftpd l 32
- Enabling the telnet ftp server 32
- Moxa cd etc 32
- Moxa etc vi inetd conf 32
- Moxa mount o remount rw dev hda1 32
- Moxa setinterface dev ttym0 2 moxa setinterface dev ttym0 now setting is rs422 interface moxa 32
- Moxa umount 32
- Telnet ftp server 32
- Da 710 series linux managing communications 33
- Dns client 33
- Etc hostname 33
- Etc resolv conf 33
- Moxa etc cat resolv conf resolv conf this file is the resolver configuration file see resolver 5 nameserver 192 68 6 nameserver 168 5 nameserver 140 15 1 nameserver 140 15 36 0 moxa etc 33
- Moxa etc init d hostname sh start 33
- Moxa hostname 33
- Moxa mount o remount rw dev hda1 33
- Moxa umount 33
- Moxa vi etc hostname moxa 33
- Apache web server 34
- Da 710 series linux managing communications 34
- Default homepage 34
- Etc nsswitch conf 34
- Etc nsswitch conf example configuration of gnu name service switch functionality if you have the glibc doc reference and info packages installed try info libc name service switch for information about this file passwd compat group compat shadow compat hosts files dns networks files protocols db files 34
- Services db files ethers db files rpc db files netgroup nis 34
- 10 3 10 35
- Allow from all 35
- Allowoverride none 35
- Attention 35
- Da 710 series linux managing communications 35
- Disabling the cgi function 35
- Moxa etc init d apache2 restart 35
- Moxa etc vi etc apache2 sites available default 35
- Moxa mount o remount rw dev hda1 35
- Moxa umount 35
- Options execcgi multiviews symlinksifownermatch 35
- Options followsymlinks 35
- Order allow deny 35
- Order deny allow 35
- Saving web pages to a usb storage device 35
- Attention 36
- 12 3 12 37
- Da 710 series linux managing communications 37
- Filter table includes three chains 37
- Iptables 37
- Mangle table includes two chains 37
- Nat table includes three chains 37
- Sub tables 37
- 13 3 13 38
- Da 710 series linux managing communications 38
- Iptables hierarchy 38
- Iptables modules 38
- 14 3 14 39
- Attention 39
- Da 710 series linux managing communications 39
- Observe and erase chain rules 39
- 15 3 15 40
- Append or delete rules 40
- Da 710 series linux managing communications 40
- Define policy for chain rules 40
- 16 3 16 41
- Attention 41
- Da 710 series linux managing communications 41
- Nat example 41
- Nat network address translation 41
- 17 3 17 42
- Da 710 series linux managing communications 42
- Enabling nat at bootup 42
- 18 3 18 43
- Attention 43
- Connecting to a ppp server over a simple dial up connection 43
- Da 710 series linux managing communications 43
- Ppp point to point protocol 43
- Checking the connection 44
- Connecting to a ppp server over a hard wired link 44
- Setting up a machine for incoming ppp connections 45
- 21 3 21 46
- Attention 46
- Da 710 series linux managing communications 46
- Etc inittab moxa umount 46
- Keep modem up even if connection fails persist crtscts modem 192 68 6 192 68 6 debug detach 46
- Pppd call dialin 46
- Say auto answer on n ats0 1 46
- Secrets for authentication using chap client server secret ip addresses pppoe example if you want to use it you need to unmark it and modify it username hinet net password 46
- 23 3 23 48
- Da 710 series linux managing communications 48
- Inet addr 192 6 2 p t p 129 7 65 mask 255 55 55 inet addr 192 6 2 p t p 129 7 65 mask 255 55 55 48
- Moxa etc cat resolv conf resolv conf this file is the resolver configuration file see resolver 5 nameserver 192 68 6 nameserver 168 5 nameserver 139 75 0 0 nameserver 140 15 1 nameserver 140 15 36 0 moxa etc 48
- Name username hinet net mtu 1492 mru 1492 defaultroute noipdefault etc ppp options eth0 5 lines 67 characters 48
- Ppp0 link encap point to point protocol 48
- Rx packets 33 errors 0 dropped 0 overrun 0 rx packets 33 errors 0 dropped 0 overrun 0 48
- Tx packets 42 errors 0 dropped 0 overrun 0 tx packets 42 errors 0 dropped 0 overrun 0 48
- Up pointopoint running mtu 1500 metric 1 up pointopoint running mtu 1500 metric 1 48
- 24 3 24 49
- Attention 49
- Da 710 series linux managing communications 49
- Nfs network file system client 49
- Snmp query started root jaredrh90 root snmpwalk v 1 c public 192 68 0 28 more snmpv2 mib sysdescr string linux moxa 2 8 5 686 1 smp mon dec 24 16 41 07 utc 2007 i686 snmpv2 mib sysobjectid oid snmpv2 smi enterprises 691 2 80 snmpv2 mib sysuptime timeticks 134544 0 22 25 4 snmpv2 mib syscontact string moxa inc snmpv2 mib sysname string moxa snmpv2 mib syslocation string fl no alley 6 lane 235 pao chiao rd shing tien city taipei taiwan r o c snmpv2 mib sysorlastchange timeticks 12 0 00 00 2 snmpv2 mib sysorid oid if mib ifmib snmpv2 mib sysorid oid snmpv2 mib snmpmib snmpv2 mib sysorid oid tcp mib tcpmib snmpv2 mib sysorid oid ip mib ip snmpv2 mib sysorid oid udp mib udpmib snmpv2 mib sysorid oid snmp view based acm mib vacmbasicgroup snmpv2 mib sysorid oid snmp framework mib snmpframeworkmibcompliance snmpv2 mib sysorid oid snmp mpd mib snmpmpdcompliance 49
- Snmp simple network management protocol 49
- 25 3 25 50
- Attention 50
- Da 710 series linux managing communications 50
- Openvpn 50
- Snmpv2 mib sysorid oid snmp user based sm mib usmmibcompliance snmpv2 mib sysordescr string the mib module to describe generic objects fo r network interface sub layers snmpv2 mib sysordescr string the mib module for snmpv2 entities snmpv2 mib sysordescr string the mib module for managing tcp implementatio snmpv2 mib snmpoutbadvalues counter32 0 snmpv2 mib snmpoutgenerrs counter32 0 snmpv2 mib snmpoutgetrequests counter32 0 snmpv2 mib snmpoutgetnexts counter32 0 snmpv2 mib snmpoutsetrequests counter32 0 snmpv2 mib snmpoutgetresponses counter32 540 snmpv2 mib snmpouttraps counter32 0 snmpv2 mib snmpenableauthentraps integer disabled 2 snmpv2 mib snmpsilentdrops counter32 0 snmpv2 mib snmpproxydrops counter32 0 root jaredrh90 root snmp query finished 50
- 26 3 26 51
- Attention 51
- Da 710 series linux managing communications 51
- Ethernet bridging for private networks on different subnets 51
- Point to the peer remote 192 68 74 dev tap0 port 1194 secret etc openvpn secrouter key cipher des ede3 cbc auth md5 tun mtu 1500 tun mtu extra 64 ping 40 up etc openvpn tap0 br sh comp lzo 51
- Start bin sh value after net is the subnet behind the remote peer route add net 192 68 netmask 255 55 55 dev br0 end 51
- 28 3 28 53
- 68 0 0 255 55 55 u 0 0 0 eth3 53
- 68 0 255 55 55 u 0 0 0 br0 53
- 68 0 255 55 55 u 0 0 0 eth0 53
- 68 0 255 55 55 u 0 0 0 eth2 53
- Attention 53
- Da 710 series linux managing communications 53
- Destination gateway genmsk flags metric ref use iface 53
- Gw 192 68 73 53
- 29 3 29 54
- Da 710 series linux managing communications 54
- Ethernet bridging for private networks on the same subnet 54
- Point to the peer remote 192 68 74 dev tap0 secret etc openvpn secrouter key cipher des ede3 cbc auth md5 tun mtu 1500 tun mtu extra 64 ping 40 up etc openvpn tap0 br sh comp lzo 54
- Routed ip 54
- Programmer s guide 56
- Da 710 series linux programmer guide 57
- Define rs232_mode 0 define rs485_2wire_mode 1 define rs422_mode 2 define rs485_4wire_mode 3 57
- Device api 57
- Int ioctl fd moxa_get_op_mode mode 57
- Int ioctl fd moxa_set_op_mode mode 57
- Int ioctl fd rtc_rd_time struct rtc_time time 57
- Int ioctl fd rtc_set_time struct rtc_time time 57
- Int ioctl int d int request 57
- Man ioctl 57
- Moxa_set_special_baud_rate moxa_get_special_baud_rate 57
- Rtc real time clock 57
- Baudrate inaccuracy 58
- Example to get the baudrate 58
- Example to set the baudrate 58
- Da 710 series linux programmer guide 59
- Define dio_error_port 1 no such port define dio_error_mode 2 no such mode or state define dio_error_control 3 open or ioctl fail define dio_error_duration 4 the value of duration is not 0 or not in the range 40 duration 3600000 milliseconds 1 hour define dio_error_duration_20ms 5 the value of duration must be a multiple of 20 ms define dio_ok 0 59
- Define dio_high 1 define dio_low 0 59
- Digital i o 59
- Important 59
- Da 710 series linux programmer guide 60
- Important 60
- Example dio program source code 61
- 10 4 10 65
- Da 710 series linux programmer guide 65
- Dev pled 65
- Moxa lsmod grep moxa_pled moxa_pled 2464 0 65
- Moxa modprobe moxa_pled moxa lsmod grep moxa_pled moxa_pled 2464 0 65
- Programmable leds 65
- System recovery 66
- Attention 67
- Bootable usb disk recovery programs and system image file included 67
- Da 710 lx 67
- Da 710 series linux system recovery 67
- Recovery environment 67
- Recovery procedure 67
- Usb port 67
- Da 710 series linux system recovery 68
- Da 710 series linux system recovery 69
- Attention 73
- Da 710 series linux system recovery 73
Похожие устройства
- Moxa DA-662A-8-LX Инструкция по эксплуатации
- Moxa DA-662A-8-LX Руководство по аппаратной части
- Moxa DA-662A-8-LX Руководство по быстрой установке
- Moxa DA-662A-8-LX Технические характеристики
- Moxa DA-662A-I-8-LX Инструкция по эксплуатации
- Moxa DA-662A-I-8-LX Руководство по аппаратной части
- Moxa DA-662A-I-8-LX Технические характеристики
- Moxa DA-662A-I-8-LX Руководство по быстрой установке
- Moxa DA-662A-16-LX Инструкция по эксплуатации
- Moxa DA-662A-16-LX Руководство по аппаратной части
- Moxa DA-662A-16-LX Технические характеристики
- Moxa DA-662A-16-LX Руководство по быстрой установке
- Moxa DA-662A-I-16-LX Инструкция по эксплуатации
- Moxa DA-662A-I-16-LX Руководство по аппаратной части
- Moxa DA-662A-I-16-LX Руководство по быстрой установке
- Moxa DA-662A-I-16-LX Технические характеристики
- Moxa DA-662A-16-DP-LX Инструкция по эксплуатации
- Moxa DA-662A-16-DP-LX Руководство по аппаратной части
- Moxa DA-662A-16-DP-LX Руководство по быстрой установке
- Moxa DA-662A-16-DP-LX Технические характеристики