Network Address Translation (NAT)

Source NAT (SNAT or masquerading) hides the machines on your local network by using one IP address to serve as a gateway for all outbound traffic. It allows your entire network to simultaneously share a single Internet connection, using your existing (private) IP-addressing scheme. SNAT effectively makes your local network invisible to the Internet.

Destination NAT (DNAT or port forwarding) allows inbound access from the Internet to network services running within your local network. With DNAT, you can run multiple, publically accessible Internet services using one external IP address. Each service, or protocol, is mapped to the appropriate server placed within a separate, (private) IP address range. This network is often reffered to as a Demilitarized Zone (DMZ) as it is isolated from your internal network by applying a strict set of rules in the security policy.

1-8-2011 - X/OS has moved!

X/OS has moved to a new office, but stays at the Amsterdam Science Park.