Nat Exemple
This document was uploaded by user and they confirmed that they have the permission to share it. If you are author or own the copyright of this book, please report to us by using this DMCA report form. Report DMCA
Overview
Download & View Nat Exemple as PDF for free.
More details
- Words: 196
- Pages: 3
1.1.1
NAT many to one
This capability allows a private network to appear as one address to outside networks like the Internet. The local addresses are multiplexed on one “real” address that is known to the outside world. The switch will use the UDP or TCP port numbers to find the original IP address of the original end user. For this reason, many to one NAT can only be used on flows that have layer 4 information like UDP and TCP port numbers.
The following statements configure the scenario shown above. policy condition from 10 source ip 10.0.0.0 mask 255.0.0.0 policy condition from 11 source ip 11.0.0.0 mask 255.0.0.0 policy condition from 12 source ip 12.0.0.0 mask 255.0.0.0 policy action rewrite 192 source rewrite IP 192.168.10.254 policy rule rule 10 condition from 10 action rewrite 192 policy rule rule 11 condition from 11 action rewrite 192 policy rule rule 12 condition from 12 action rewrite 192 qos apply OR: policy network group private 10.0.0.0 mask 255.0.0.0 11.0.0.0 mask 255.0.0.0 12.0.0.0 mask 255.0.0.0 policy condition from private source network group private policy action nat source rewrite ip 192.168.10.254 policy rule hide private condition from private action nat
NAT many to one
This capability allows a private network to appear as one address to outside networks like the Internet. The local addresses are multiplexed on one “real” address that is known to the outside world. The switch will use the UDP or TCP port numbers to find the original IP address of the original end user. For this reason, many to one NAT can only be used on flows that have layer 4 information like UDP and TCP port numbers.
The following statements configure the scenario shown above. policy condition from 10 source ip 10.0.0.0 mask 255.0.0.0 policy condition from 11 source ip 11.0.0.0 mask 255.0.0.0 policy condition from 12 source ip 12.0.0.0 mask 255.0.0.0 policy action rewrite 192 source rewrite IP 192.168.10.254 policy rule rule 10 condition from 10 action rewrite 192 policy rule rule 11 condition from 11 action rewrite 192 policy rule rule 12 condition from 12 action rewrite 192 qos apply OR: policy network group private 10.0.0.0 mask 255.0.0.0 11.0.0.0 mask 255.0.0.0 12.0.0.0 mask 255.0.0.0 policy condition from private source network group private policy action nat source rewrite ip 192.168.10.254 policy rule hide private condition from private action nat
