H3C S7500 Series Ethernet Switches Operation Manual
Operation Manual – NAT, Netstream, Policy Routing
H3C S7500 Series Ethernet Switches Chapter 1
NAT Configuration
1-9
To do… Use the command… Remarks
Enter system view
system-view
—
Enter VLAN interface view
interface Vlan-interface vlan-id
—
TCP/UDP is
used
nat server protocol pro-type
global global-addr global-port
inside host-addr host-port slot
slot-number
Configure an
internal
server
A protocol
other than
TCP/UDP is
used
nat server protocol pro-type
global global-add inside
host-addr slot slot-number
Configure a group of
consecutive internal servers
nat server protocol pro-type
global global-addr global-port1
global-port2 inside host-addr1
host-addr2 host-port slot
slot-number
Perform
configuration
as required
Caution:
z Up to 128 internal servers can be configured in one nat server command.
z Up to 768 nat server commands can be configured for one VLAN interface.
z Up to 4096 internal servers can be configured for one VLAN interface.
z Up to 1024 nat server commands and 4096 internal servers can be configured in
the system.
In the above commands, the global-addr and global-port arguments respectively
represents the public IP address and service port number provided for external devices
to access an internal server; the host-addr and host-port arguments respectively
represents the IP address and service port number of the server in the internal network.
The global-port and host-port arguments are not needed if a protocol other than TCP
and UDP is used which does not use port number.
Note that the host-port argument ranges from 0 to 65,535 and can be replaced by
keywords for well-known port numbers. For example, you can use www to replace
WWW service port 80, and ftp to replace FTP service port 21. Port number 0 and
keyword any have the same meaning: the internal server can provide any available
services in the internal network; but this is not supported currently.