Cisco 4700M Configuration Manual page 359

Chapter 5 Configuring Network Address Translation
Table 5-3
Task and Command Example
1.
2.
3.
4.
5.
6.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
OL-16202-01
Static NAT Configuration Quick Start
If you are operating in multiple contexts, observe the CLI prompt to verify
that you are operating in the desired context. If necessary, change to the
correct context.
host1/Admin# changeto C1
host1/C1#
The rest of the examples in this table use the C1 user context, unless
otherwise specified. For details on creating contexts, see the Cisco 4700
Series Application Control Engine Appliance Virtualization Configuration
Guide.
Enter configuration mode.
host1/C1# config
host1/C1(config)#
Configure an ACL to allow traffic that requires NAT.
host1/C1(config)# access-list ACL1 line 10 extended permit tcp
10.0.0.0 255.0.0.0 eq 8080 any
host1/C1(config-acl)# exit
Configure a local interface to filter and receive traffic that requires NAT.
host1/C1(config)# interface vlan 100
host1/C1(config-if)# mtu 1500
host1/C1(config-if)# ip address 192.168.1.100 255.255.255.0
host1/C1(config-if)# no shutdown
host1/C1(config-if)# exit
Configure a second interface (global interface) for performing NAT.
host1/C1(config)# interface vlan 101
host1/C1(config-if)# mtu 1500
host1/C1(config-if)# ip address 172.27.16.100 255.255.255.0
host1/C1(config-if)# no shutdown
host1/C1(config-if)# exit
Configure a class map and define match criteria.
host1/C1(config)# class-map match-any NAT_CLASS
host1/C1(config-cmap)# match access-list ACL1
host1/C1(config-cmap)# exit
Configuring Static NAT and Static Port Redirection
5-33