F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices NAT and ALG Configuration Guide-6PW100
Table Of Contents
- Title Page
- Table of Contents
- Configuring NAT
- Overview
- Configuration guidelines
- Configuring NAT in the Web interface
- Recommended configuration procedure
- Creating an address pool
- Configuring dynamic NAT on an interface
- Creating a static address mapping
- Enabling static NAT on an interface
- Configuring an internal server
- Configuring ACL-based NAT on the internal server
- Configuring DNS mapping
- NAT configuration example
- Internal server configuration example
- Configuring NAT at the CLI
- NAT configuration task list
- Configuring static NAT
- Configuring dynamic NAT
- Configuring an internal server
- Configuring ACL-based NAT on an internal server
- Configuring DNS mapping
- Displaying and maintaining NAT
- One-to-one static NAT configuration example
- Dynamic NAT configuration example
- Common internal server configuration example
- NAT DNS mapping configuration example
- Troubleshooting NAT
- Configuring NAT-PT
- Feature and hardware compatibility
- Overview
- NAT-PT configuration task list
- Configuration prerequisites
- Enabling NAT-PT
- Configuring a NAT-PT prefix
- Configuring IPv4/IPv6 address mappings on the IPv6 side
- Configuring IPv4/IPv6 address mappings on the IPv4 side
- Setting the ToS field after NAT-PT translation
- Setting the traffic class field after NAT-PT translation
- Configuring static NAPT-PT mappings of IPv6 servers
- Displaying and maintaining NAT-PT
- NAT-PT configuration examples
- Troubleshooting NAT-PT
- NAT444
- Configuring ALG
- Support and other resources
- Index
i
Contents
Configuring NAT ·························································································································································· 1
Overview ············································································································································································ 1
NAT control ······························································································································································· 2
NAT operation ·························································································································································· 2
Address translation ··················································································································································· 5
Low-priority address pool ········································································································································ 5
Configuration guidelines ·················································································································································· 6
Configuring NAT in the Web interface ·························································································································· 6
Recommended configuration procedure ················································································································ 6
Creating an address pool ······································································································································· 7
Configuring dynamic NAT on an interface ··········································································································· 8
Creating a static address mapping ····················································································································· 10
Enabling static NAT on an interface ··················································································································· 11
Configuring an internal server ····························································································································· 12
Configuring ACL-based NAT on the internal server ·························································································· 17
Configuring DNS mapping ·································································································································· 18
NAT configuration example ································································································································· 18
Internal server configuration example ················································································································· 21
Configuring NAT at the CLI ·········································································································································· 24
NAT configuration task list ··································································································································· 24
Configuring static NAT ········································································································································· 25
Configuring dynamic NAT ··································································································································· 25
Configuring an internal server ····························································································································· 27
Configuring ACL-based NAT on an internal server ··························································································· 28
Configuring DNS mapping ·································································································································· 29
Displaying and maintaining NAT ························································································································ 29
One-to-one static NAT configuration example ··································································································· 29
Dynamic NAT configuration example ················································································································· 30
Common internal server configuration example ································································································ 31
NAT DNS mapping configuration example ······································································································· 32
Troubleshooting NAT ····················································································································································· 33
Symptom 1 ····························································································································································· 33
Solution ··································································································································································· 33
Symptom 2 ····························································································································································· 33
Solution ··································································································································································· 33
Configuring NAT-PT ··················································································································································· 34
Feature and hardware compatibility ···························································································································· 34
Overview ········································································································································································· 34
Basic concepts ······················································································································································· 35
Implementing NAT-PT ············································································································································ 35
NAT-PT limitations ················································································································································· 37
Protocols and standards ······································································································································· 37
NAT-PT configuration task list ······································································································································· 37
Configuration prerequisites ··········································································································································· 38
Enabling NAT-PT ···························································································································································· 38
Configuring a NAT-PT prefix ········································································································································ 38
Configuring IPv4/IPv6 address mappings on the IPv6 side ······················································································ 39
Configuring a static mapping on the IPv6 side ·································································································· 39