Adding a new dynamic nat configuration – Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual
Page 380
366
Brocade Mobility RFS7000-GR Controller System Reference Guide
53-1001944-01
Configuring NAT information
6
3. Refer to the following information as displayed within the Dynamic Translation tab.
4. Select an existing NAT configuration and click the Edit button to modify the settings of this
existing NAT configuration. The fields within the Edit screen are similar to those displayed
when adding a new NAT configuration.
5. Select an existing NAT configuration and click the Delete button to remove it from the list of
available configurations.
6. Click the Add button to display a screen to create a new NAT configuration and add it to the list
of available configurations. For more information, see
Adding a new Dynamic NAT configuration
If the existing NAT configurations displayed with the Configuration prove unsuitable for translation,
consider creating a new one.
To define a new NAT configuration:
1. Select Security > NAT from the main menu tree.
2. Click on the Dynamic Translation tab.
Type
Displays the NAT type as either:
•
Inside - Applies NAT on packets arriving on interfaces marked as inside.
These interfaces should be private networks not accessible from outside
(public) networks.
•
Outside - Applies NAT on packets coming in on interfaces marked as outside.
These switch interfaces should be public or outside networks accessible from
anywhere on the Internet.
Direction
Displays the direction as either:
•
Source - The inside network is transmitting data over the network to its
intended destination. On the way out, the source IP address is changed in the
header and replaced by the (public) IP address.
•
Destination - Packets passing through the NAT on the way back to the switch
managed LAN are searched against the records kept by the NAT engine. The
destination IP address is changed back to the specific internal private class IP
address to reach the LAN over the switch managed network.
Access List
Defines the packet selection criteria for NAT. NAT is applied only on packets which
match a rule defined in the access-list. Only the Standard IP and Extended IP
Access List can be used.
Interface
Defines the interface through which packets are routed. The source IP address
and source port number (only if IP protocol is TCP or UDP) of packets is changed to
the interface IP address and a random port number.