Client Connection via Firewall with Static NAT

This connection option is suitable if there is no ViPNet coordinator in the local network or clients cannot use a coordinator as a firewall. It also applies where there is a firewall or NAT device on the border of the local network that allows you to set static rules of address translation.

To configure a client's connection via a firewall (NAT) where static rules of address translation are possible:

Select the client node and click the Firewall tab.
Ensure there is a tick in the Use firewall check box.
Select With static address translation from the Firewall type drop-down box.
If you know the IP addresses of the external interface of the firewall (and they are not changed dynamically):
1. Click the Add button in the External firewall IP addresses section of the screen.
  The IP address window appears:
2. Type an IP address and click OK. Note: IP addresses must be unique. If an IP address already exists, the program will warn you. Because external addresses are specified from permissible addresses of the Internet, if you add an impossible address, the program will warn you.
  IP packets from external nodes, intended for this client, will be sent to these addresses.
To fix an external IP address for accessing this client through the firewall, click the Fix an external IP address check box and select the IP address from the drop-down list. Note: The first address from the list of external addresses automatically displays.
If an IP address is not specified, the IP address is registered by the external parameters of the IP packet. If an IP address is specified, external network nodes will send packets for this client to the specified address, regardless of the address substituted in the external parameters of the packet.

We recommend you select this option only if the firewall has several external addresses and you need to route incoming packets through a specific address, regardless of the firewall address from which a packet left.
If necessary, change the port number in the UDP access port text box. By default, it is 55777. This port number is specified on the firewall to give external nodes access to this client.