Configuring an internal server, Introduction to internal server, Configuration procedure – H3C Technologies H3C S12500 Series Switches User Manual

Page 115

Advertising
background image

101

Step Command

1.

Enter system view.

system-view

2.

Enter interface view.

interface interface-type interface-number

3.

Configure NAPT by associating an ACL
with an IP address pool on the outbound

interface for translating both IP address

and port number.

nat outbound acl-number address-group group-number
[ vpn-instance vpn-instance-name ]

Configuring an internal server

Introduction to internal server

To configure an internal server, you need to map an external IP address and port number to the internal
server. This is done through executing the nat server command on an interface.
Internal server configurations include external network information (external IP address global-address

and external port number global-port), internal network information (internal IP address local-address

and internal port number local-port), and internal server protocol type.

Configuration procedure

After mapping the private IP address/port number (local-address and local-port) of an internal server to

a public IP address/port number (global-address and global-port), hosts in external networks can access
the server located in the private network.
Both internal servers and their external IP addresses can support MPLS L3VPN. If an internal server

belongs to an MPLS L3VPN, you also need to specify the vpn-instance-name argument. Without this

argument specified, the internal server does not belong to any VPN.
To configure an internal server:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter interface view.

interface interface-type interface-number

N/A

3.

Configure an internal
server.

nat server protocol pro-type global { global-address |

interface interface-type interface-number |

current-interface } [ global-port ] [ vpn-instance
global-name ] inside local-address [ local-port ]

[ vpn-instance local-name ]

nat server protocol pro-type global { global-address |

interface interface-type interface-number |

current-interface } global-port1 global-port2

[ vpn-instance global-name ] inside local-address1
local-address2 local-port [ vpn-instance local-name ]

Use either
command.

Advertising
This manual is related to the following products:

H3C S9500E Series Switches, H3C MSR 5600, H3C MSR 50, H3C MSR 3600, H3C MSR 30, H3C MSR 2600, H3C MSR 20-2X[40], H3C MSR 20-1X, H3C MSR 930, H3C MSR 900, H3C SecPath F5020, H3C SecPath F5040, H3C VMSG VFW1000

Popular Brands
Popular manuals