3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide
330 CHAPTER 19: NAT CONFIGURATION COMMANDS
Parameter
domain-name: Valid domain name that can be correctly translated by external
DNS servers.
global-addr: IP address (a valid one) that outside hosts can access.
global-port: Port number of the services that outside hosts can access.
tcp: Indicates that TCP protocol is borne by the IP protocol.
udp: Indicates that UDP protocol is borne by the IP protocol.
Description
Use the nat dns-map command to configure a mapping entry from a domain
name to the external IP address, port number and protocol type.
Use the undo nat dns-map command to remove the mapping entry from a
domain name to the external IP address, port number and protocol type.
If an internal host does not have any DNS server configured, the host can
differentiate various internal servers and access them with the domain names after
you configure the mapping entries with this command.
By default, no mapping entry is configured. Then the domain name request of the
internal host can be mapped only to one internal server after being resolved by the
external DNS server to get the external IP address.
Up to 16 mapping entries can be added.
Example
# Configure a mapping entry from the domain name to the external IP address,
port number and protocol type.
[SecBlade_FW] nat dns-map www.abc.com 202.112.0.1 80 tcp
nat outbound Syntax
nat outbound acl-number [ address-group group-number [ no-pat ] ]
undo nat outbound acl-number [ address-group group-number [ no-pat ] ]
View
Interface view
Parameter
address-group: Configures address translation by means of address pool. If the
address pool is not specified, use the IP address of the interface as the translated
address, i.e., the "easy-ip" feature.
no-pat: Uses simple address translation, which means only to translate the
address of the packet but not use port information.
acl-number: ACL index in the range of 2000 to 3999 (the advanced ACL can be
used).