Configuring masquerading

Masquerading is a type of network address translation whereby the sender's address is dynamically substituted depending on the address assigned to the specific interface. You can use the masquerading function if you need to spoof the parameters in the headers of IP packets for devices on the internal network. This allows devices residing in the internal network and not having public IP addresses to send and receive IP packets from an external network.

To enable the masquerading function through the Kaspersky Security Center 13.2 Web Console:

1. In the main window of the Web Console, select Devices → Managed devices.
2. Click the name of the device where Kaspersky IoT Secure Gateway 1000 is running. If the device name is not on the list, add it to the Managed devices group.
3. In the device properties window that opens, select the Applications tab.
4. Press Kaspersky IoT Secure Gateway.

   This opens a window containing information about Kaspersky IoT Secure Gateway 1000.

5. Select the Application settings tab.
6. Select Settings → NAT.
7. Enable or disable the masquerading feature by setting the toggle button to Masquerading enabled or Masquerading disabled as necessary.

   Regardless of the selected position of the toggle button, routing of transit IP packets always remains enabled.

8. Click Save in the lower part of the page to save the changes.