Nat Configuration Examples; Dynamic Nat And Pat (Snat) Configuration Example - Cisco 4700M Configuration Manual
Application control engine appliance security
Hide thumbs
Also See for 4700M:
- Administration manual (292 pages) ,
- Upgrade manual (24 pages) ,
- Installation manual (18 pages)
Table of Contents
Advertisement
Chapter 5
Configuring Network Address Translation
Note
NAT Configuration Examples
Dynamic NAT and PAT (SNAT) Configuration Example
OL-16202-01
interface vlan number—(Optional) Clears active translations by the VLAN
•
number.
state static—(Optional) Clears active translations by the state.
•
portmap—(Optional) Clears active translations by the port map.
•
If you configured redundancy, then you need to explicitly clear Xlates on both the
active and the standby ACEs. Clearing Xlates on the active appliance alone will
leave the standby appliance's Xlates at the old mappings.
For example, to clear all static translations, enter:
host1/Admin# clear xlate state static
The following sections show typical scenarios that use dynamic and static NAT
solutions:
Dynamic NAT and PAT (SNAT) Configuration Example
•
Server Farm-Based Dynamic NAT (SNAT) Configuration Example
•
Static Port Redirection (DNAT) Configuration Example
•
SNAT with Cookie Load Balancing Example
•
The following SNAT configuration example shows the commands that you use to
configure dynamic NAT and PAT on your ACE. In this SNAT example, packets
that ingress the ACE from the 192.168.12.0 network are translated to one of the
IP addresses in the NAT pool defined on VLAN 200 by the nat-pool command.
The pat keyword indicates that ports higher than 1024 are also translated.
If you are operating the ACE in one-arm mode, omit interface VLAN 100 and
configure the service policy on interface VLAN 200.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
NAT Configuration Examples
5-45
Advertisement
Table of Contents
