I'm new to Astaro and I'm just not understanding the way NAT works in conjunction with packet filters. In particular, I don't understand the "traffic service" and "destination service" fields when defining a DNAT.
In the world I come from you NAT public IPs to private IPs, and this is completely separate from filtering... there is no concept of "services" associated with the NAT translations themselves. So, you define a NAT and then create the appropriate filter exceptions to let the desired traffic through the NAT (calling out the *private* IP of the destination NAT in the packet filter).
So, I go to create my first DNAT in ASG and I see these strange "service" fields.. the help file didn't enlighten me much. What are these for? Do they eliminate the need to create specific packet filters? If not, why are they there? The fields also seem to only allow "Any" or a single service... so what if you need to allow both ports 80 and 443 to a destination web server?
Clearly I need some help understanding how NAT works in Astaro-land, especially the "service" fields of a NAT entry. Any information would be greatly appreciated!
This thread was automatically locked due to age.
