6 configuring nat information, 1 defining dynamic nat translations, 6 configuring nat information -28 – Motorola Series Switch WS5100 User Manual

6-28 WS5100 Series Switch System Reference Guide

4. Select an interface and click the

Delete

button to delete the ACL interface from the switch.

5. Click the

Export

to export the selected ACL attribute to a user specified location.

6.6 Configuring NAT Information

Network Address Translation NAT provides the translation of an Internet Protocol (IP) address within one
network to a different, known IP address within another network. One network is designated the private
network, while the other is the public. NAT provides a layer of security by translating private (local) network
addresses to one or more public IP addresses. For example, when an administrator wants to allow individuals
on the WAN side access to a particular FTP or web server that is located on one of the LAN subnets but does
not want to permit any other access, NAT is the appropriate solution.

NAT operates on the switch to connect two networks together. An inside network is addressed with
addresses requiring conversion into valid addresses before packets can be forwarded to an outside network.
The translation process operates in parallel with packet routing.

NAT enables network administrators to move a Web or FTP Server to another host without having to
troubleshoot broken links. Change the inbound mapping with the new inside local address to reflect the new
host. Configure changes to your internal network seemlessly since the only external IP address either
belongs to the switch or from a pool of global addresses.

The switch NAT configuration process is divided into the following activities:

•

Defining Dynamic NAT Translations

•

Defining Static NAT Translations

•

Configuring NAT Interfaces

•

Viewing NAT Status

6.6.1 Defining Dynamic NAT Translations

The switch Dynamic NAT functionality creates active translation entries when a packet crosses from an IP
NAT inside interface to an IP NAT outside interface, or vice versa. Dynamic NAT requires packets to be
switched through the NAT router to generate translations in the switch’s translation table.

Refer to the NAT screen’s

Dynamic Translation

tab to view existing dynamic NAT configurations available

to switch.

To view and add/edit a dynamic NAT configuration:

1. Select

Security

>

NAT

from the main menu tree.

2. Click on the

Dynamic Translation

tab.

High Destination IP

Displays the High Destination IP Address.

Times Used

Displays the number of instances this ACL has been used. Periodically review this among
ACLs to determine whether specific ACLs should be deleted or modified to make relevant.