Riverstone Networks WICT1-12 User Manual

21-10 Riverstone Networks RS Switch Router User Guide Release 8.0

Configuration Examples

Network Address Translation Configuration

1.

The first step is to create the interfaces:

2.

Next, define the interfaces to be NAT “inside” or “outside”:

3.

Then, define the NAT dynamic rules by first creating the source ACL pool and then configuring the
dynamic bindings:

Using Dynamic NAT with DNS

When a client from outside sends a query to the static global IP address of the DNS server, NAT will translate the global
IP address to the local IP address of the DNS server. The DNS server will resolve the query and respond with a reply.
The reply can include the local IP address of a host inside the local network (for example, 10.1.1.2); this local IP
address will be translated by NAT into a global IP address (for example, 192.50.20.2) in a dynamic binding for the
response.

interface create ip 10-net address-netmask 10.1.1.1/24 port et.2.1

interface create ip 192-net address-netmask 192.50.20.1/24 port et.2.2

nat set interface 10-net inside

nat set interface 192-net outside

acl lcl permit ip 10.1.1.0/24

nat create dynamic local-acl-pool lcl global-pool 192.50.20.2-192.50.20.9

nat create static local-ip 10.1.1.10 global-ip 192.50.20.10 protocol ip