Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

200

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

5

12. Set or override the following Source configuration parameters:

13. Select the Destination tab to view destination NAT configurations and define packets passing

through the NAT on the way back to the managed LAN are searched against to the records kept
by the NAT engine. The destination IP address is changed back to the specific internal private
class IP address to reach the LAN over the managed network.

Protocol

Select the protocol for use with source translation (TCP, UDP and Any are available options). TCP is a
transport layer protocol used by applications requiring guaranteed delivery. It’s a sliding window
protocol handling both time outs and retransmissions. TCP establishes a full duplex virtual
connection between two endpoints. Each endpoint is defined by an IP address and a TCP port
number. The User Datagram Protocol (UDP) offers only a minimal transport service, non-guaranteed
datagram delivery, and provides applications direct access to the datagram service of the IP layer.
UDP is used by applications not requiring the level of service of TCP or are using communications
services (multicast or broadcast delivery) not available from TCP. The default setting is Any.

Source IP

Enter the local address used at the origination of the static NAT configuration. This address (once
translated) is not exposed to the outside world when the translation address is used to interact with
the remote destination.

Source Port

Use the spinner control to set the local port number used at the origination of the static NAT
configuration. The default source port is 1.

NAT IP

Enter the IP address of the matching packet to the specified value. The IP address modified can be
either source or destination based on the direction specified.

NAT Port

Enter the port number of the matching packet to the specified value. This option is valid only if the
direction specified is destination.

Network

Select Inside or Outside NAT as the network direction. Select Inside to create a permanent,
one-to-one mapping between an address on an internal network and a perimeter or external
network. To share a Web server on a perimeter interface with the Internet, use static address
translation to map the actual address to a registered IP address. Static address translation hides
the actual address of the server from users on insecure interfaces. Casual access by unauthorized
users becomes much more difficult. Static NAT requires a dedicated address on the outside
network for each host. Inside NAT is the default setting.Inside is the default setting.