I have learned some useful knowledge about the wireless router proxy, so I have studied the configuration of the wireless router proxy. I would like to share with you here, I hope it will be useful to you. With the rapid development of network technology, enterprises and institutions can access INTERNET to share resources.
In most cases, the ddnleased line has become a common method with stable performance and good scalability. The connection of the DDN mode is simple in terms of hardware requirements, and only one router is required), wireless router proxy server), but in terms of system configuration is a tricky problem for many network administrators.
Configure a router to access INTERNET Resources
10.0.0.0/8:10. 0.0.0 ~ 10.20.255.255
172.16.0.0/12: 172.16.0.0 ~ 172.31.255.255
192.168.0.0/16: 192.168.0.0 ~ 192.168.255.255
Under normal circumstances, when a workstation inside the Organization directly uses a route for external access, it will be filtered out by the router because the workstation uses a reserved address on the Internet, as a result, Internet resources cannot be accessed. The solution to this problem is to use the NATNetwork Address Translation function provided by the routing operating system to convert private addresses on the Intranet to valid addresses on the Internet, this allows users with invalid IP addresses to access the Internet through NAT. the advantage of this is that you do not need to configure a wireless router proxy to reduce investment, save valid IP addresses, and improve the security of the internal network. NAT has two types: Single mode and global mode.
The NAT single mode maps many local LAN hosts into an Internet address just like its name. All hosts in the LAN are regarded as Internet users for External Internet networks. The host in the local LAN continues to use the local address. In the global mode of NAT, the router interface maps many local LAN hosts into an IP address pool with a certain Internet address range ). When the local host port is connected to a host on the Internet, an IP address in the IP address pool is automatically assigned to the local host. After the connection is interrupted, the dynamically assigned IP address is released, the released IP address can be used by other local hosts. The following uses the network environment of our Organization as an example to list the configuration methods and processes for your reference. Our company uses China Unicom Optical Cable V.35) to access the INTERNET. The router is CISCO2610 and the LAN uses the INTEL550 M switch. China Unicom provides us with the following four IP addresses:
211.90.137.25255.255.255.252) Wan port used for the local Router
211.90.137.2620.0000252) port used for peer connection
211.90.139.41255.20.252) at your disposal
211.90.139.42255.255.255.252) for your own control
Note: All workstations in the school are connected to switches. Routers are also connected to internal switches through Ethernet ports. The Ethernet ports on the routers use internal private addresses, two valid IP addresses allocated by China Unicom are used at both ends of the optical fiber. In this connection mode, you only need to set NAT inside the vro to allow all workstations within the organization to access INTERNTE. On each workstation, you only need to set the gateway to the Ethernet port 192.168.0.3 of the vro) you can access the Internet without the need to set up a wireless router proxy, and save two valid IP addresses for your own freedom to control such as the establishment of your own WEB and E-MAIL server ). But there are also disadvantages: you cannot enjoy the CACHE service provided by the proxy server to speed up access. Therefore, this configuration scheme is suitable for a unit with a small number of workstations. You can use the two methods described later when the number of workstations within the unit is large.