The Alias An assumed name address that routes a message to all real addresses associated with the assumed name. facility allows a network interface to be represented by multiple IP addresses. An IP alias may be assigned to any network interface. This facility is useful on the External Network The External network is the unprotected network for which no network address translation is performed. The External network is typically connected to the Internet. However, GNAT Box can also be used internally on private networks as an intranet firewall. If connected to the Internet, the external interface must have a registered IP address. GNAT Box provides no security for hosts located on the External network. See Protected and Private Service Networks. interface, or if multiple targets on the PSN or Protected Network The Protected network is the network hidden behind the GNAT Box system. The term Protected network is used by GTA to refer to the network directly connected to the GNAT Box system. All features and attributes associated with this network also apply to all networks connected to the Protected network. All hosts and IP addresses used on this network are hidden from the External and Private Service networks. Hosts on the Protected Network are by default not accessible from the External network or PSN network. The Tunnel facility can be used to allow external access to hosts and services on this network. are required for the same service (port) via the Tunnel A secure virtual connection through the Internet or an intranet. facility (e.g., multiple web servers). See individual product guides for the maximum number of IP aliases available on a specific GTA Firewall.
The NAME field in Aliases allows the user to enter a logical name for the IP alias. Logical names can be used as Interface Objects.
IP aliases used on an External Network interface attached to the Internet must be registered (legitimate) IP addresses. An IP alias need not be from the same network as the real IP address, since the GTA Firewall will route packets between all networks to which it is logically attached.
¨ Notes
User-defined names may not use a number as the first character.
If the IP alias is on the same logical network as the network interface's primary IP address, use a netmask of /32 (255.255.255.255).