R3204P16-HP Load Balancing Module Network Management Configuration Guide-6PW101
Table Of Contents
- Title page
- Contents
- Interface management configuration
- IP addressing configuration
- MAC address table configuration
- Layer 2 forwarding configuration
- Layer 2 forwarding overview
- Configuring general Layer 2 forwarding
- Configuring inline Layer 2 forwarding
- Configuring inter-VLAN Layer 2 forwarding
- Forward-type inline Layer 2 forwarding configuration example
- Blackhole-type inline Layer 2 forwarding configuration example
- Inter-VLAN Layer 2 forwarding configuration example
- VLAN configuration
- ARP configuration
- Gratuitous ARP configuration
- Proxy ARP configuration
- Layer 3 forwarding configuration
- NAT configuration
- Overview
- Configuring a NAT policy in the web interface
- Configuring NAT in the CLIs
- Configuration guidelines
- ALG configuration
- Static route configuration
- RIP configuration
- OSPF configuration
- BGP configuration
- Policy-based routing configuration
- Route displaying
- DNS configuration
- Overview
- Configuring DNS on the web interface
- Configuring DNS in the CLIs
- Troubleshooting IPv4 DNS configuration
- Support and other resources
- Index
99
To do… Use the command…
Remarks
Enter system view system-view —
Configure a one-to-one static NAT
mapping
nat static local-ip global-ip Required
Enter interface view interface interface-type interface-number —
Enable static NAT on the interface nat outbound static [ track vrrp virtual-router-id ] Required
2. Configuring net-to-net static NAT
Net-to-net static NAT translates a private network into a public network.
Follow these steps to configure net-to-net static NAT:
To do… Use the command…
Remarks
Enter system view system-view —
Configure a net-to-net static NAT
mapping
nat static net-to-net local-network
global-network { netmask-length | netmask }
Required
Enter interface view interface interface-type interface-number —
Enable static NAT on the interface nat outbound static Required
Configuring dynamic NAT
Dynamic NAT is usually implemented by associating an ACL with an address pool (or the address of an
interface) on an interface. Dynamic NAT can also be implemented based on the packet source address
on an outbound interface, without use of an ACL.
Dynamic NAT supports two modes, No-PAT and NAPT. No-PAT is used in many-to-many address
translation but does not translate TCP/UDP port numbers; while NAPT allows for many-to-one address
translation by translating also TCP/UDP port numbers. To select the address of an interface as the
translated address, you can use Easy IP.
Typically, a NAT entry is configured on the outbound interface of the NAT gateway. If internal hosts need
to access external networks through multiple outbound interfaces on the NAT gateway, you need to
configure NAT entries on each of the interfaces. To avoid this, the LB module supports configuring a NAT
entry on the inbound interface on the NAT gateway. When hosts in a VPN want to access other VPNs
through multiple outbound interfaces on a NAT device, you can configure a NAT entry on the inbound
interface on the NAT device, simplifying NAT configuration.
When a packet from an internal host to the external network arrives:
• If it is the first packet and an address pool is associated with an outbound interface, NAT
determines whether to translate the packet based on the ACL. If yes, NAT chooses an address from
the associated address pool or gets the associated interface address, performs address translation,
and then saves the address mapping in the address translation table. All subsequent packets from
the internal host are serviced by NAT directly according to the mapping entry.
• If an address pool is associated with an inbound interface, NAT determines whether to translate the
packet based on the ACL (or packet source address). If yes, NAT redirects the packet to the NAT
board and performs address translation as in the mentioned process. This case does not support
Easy IP.