TMS zl Management and Configuration Guide ST.1.1.100226
5-25
Network Address Translation
NAT Examples
Table 5-10. Firewall Access Policy for Destination NAT
NAT Examples
This section contains examples of NAT implementations with step-by-step
configuration instructions. The examples provided are as follows:
■ Source NAT
• Network merger (See “Network Merger” on page 5-25)
• Single NAT address (See “Single NAT Address” on page 5-31)
• Limited NAT pool (See “Limited NAT Pool” on page 5-35.)
■ Destination NAT
• Port forwarding with PAT (See “Port Forwarding with PAT” on page
5-38)
Source NAT
This section includes several examples for configuring source NAT.
Network Merger
In this example, ProCurve University is merging two networks that use the
same IP addresses. Each network is controlled by a TMS zl Module. Rather
than change the networks’ IP addressing, the IT staff decides to implement
source NAT on both modules. Figure 5-11 shows how each TMS zl Module
translates the source addresses of the devices behind it to its own IP address
on a shared data center VLAN. Users in both networks can then access
services in the data center without causing IP address conflicts.
Parameter Source NAT Policy Firewall Access Policy
From
EXTERNAL EXTERNAL
To
SELF SELF
Service
Any Service Any Service
Source Address(es)
Any Address Any Address
Destination Address(es)
192.168.5.177 192.168.5.177
NAT IP Address(es)
10.1.1.222 n/a