IP filtering and network address translation
IP filtering and network address translation (NAT) act like a firewall to protect your internal network from intruders.
IP filtering lets you control what IP traffic to be allowed into and out of your network. Basically, it protects your network by filtering packets according to the rules that you define. NAT, alternatively, allows you to hide your unregistered private IP addresses behind a set of registered IP addresses. This helps to protect your internal network from the outside networks.
NAT also helps to alleviate the IP address depletion problem, because many private addresses can be represented by a small set of registered addresses.
Packet rules is the combination of IP filtering and NAT. When you see the term packet rules used in this topic collection,
the subject applies to both of those components.
In addition to the information in this topic, use the online help available from the Packet Rules Editor in iSeries™ Navigator. The iSeries Navigator online help offers the tips and techniques for making the most of the packet rules, including How do I help, Tell me about help, and extensive context-sensitive help.
- Printable PDF
Use this to view and print a PDF of this information.
- Scenarios: Packet rules
You can use network address translation (NAT) and IP filtering to protect your network.
- Packet rules concepts
Packet rules comprise both network address translation (NAT) rules and IP filtering rules. These two rules run at the IP layer of the TCP/IP stack and help protect your system against potential risks that are commonly associated with TCP/IP traffic.
- Planning for packet rules
Before you connect any of your network resources to the Internet, you need to develop a security plan and understand the potential security risks involved.
- Configuring packet rules
This checklist contains an overview of the tasks complete to ensure that your rules work properly when activated.
- Managing packet rules
You need to use every possible means to effectively and efficiently manage your packet rules. The security of your system depends on the accurate and current rules.
- Troubleshooting packet rules
This topic provides troubleshooting advice for some common packet rules problems.
- Related information for packet rules
Listed below are the IBM® Redbooks™ (in PDF format) that provide additional information about IP filtering and network address translation (NAT). You can view or print the PDFs.