R3166-R3206-HP High-End Firewalls NAT and ALG Configuration Guide-6PW101

Table 9 DNS mapping configuration items

Item Descri

tion

Protocol Select the protocol supported by an internal server.

Global IP Specify the external IP address of the internal server.

Global Port Specify the port number of the internal server.

Domain Specify the domain name of the internal server.

Return to Internal server configuration task list.

NAT configuration examples

NAT configuration example

Network requirements

As illustrated in Figure 13, a c

ompany has three public IP addresses ranging from 202.38.1.1/24 to

202.38.1.3/24, and a private network segment of 10.110.0.0/16. Specifically, the company requires

that the internal users in subnet 10.110.10.0/24 can access the Internet through NAT.

Figure 13 NAT network diagram

Configuration procedure

# Configure an ACL to permit internal users in subnet 10.110.10.0/24 to access the Internet.

• Select Firewall > ACL from the navigation tree and then click Add.

• Type 2000 in ACL Number.

• Click the icon in the Operation column corresponding to ACL 2000 to enter the ACL 2000

configuration page, and then click Add.

• Select Permit in Operation.

• Select the Source IP Address checkbox and then type 10 .110 .1 0 . 0 .

• Type 0.0.0.255 in Source Wildcard.

• Click Apply.

• Click Add on the ACL 2000 configuration page.

• Select Deny for Operation.

• Click Apply.

# Configure a NAT address pool.