Network Address Translation
Left running head:
Chapter name (automatic)
684
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
Alcatel-Lucent
BENEFITS OF NAT
• Connection to the Internet: NAT is a method of connecting multiple computers to
the Internet (or any other IP network) using one IP address.
• Transparent Proxying.
• Security considerations: NAT automatically provides firewall-style protection
without any special setup.
• Traffic logging: Since all the traffic to and from the Internet has to pass through a
NAT gateway, it can record all the traffic to a log file.
• Ease and flexibility of network administration: The smaller parts expose only one
IP address to the outside, which means that computers can be added or removed,
or their addresses changed, without impacting external networks.
BEFORE YOU CONFIGURE NAT
1. Before you configure NAT, you must decide whether NAT has to be configured on
an internal or external interface.
2. Have a basic understanding of the IP protocol, port numbers, host address
mapping, and how to configure dynamic NAT policies.
3. Configure the common classifiers based on the usage policy statements. (Refer to
the “Common Classifiers” chapter in this guide).
ALCATEL-LUCENT SPECIFIC OVERVIEW
• In OmniAccess 5740 USG, NAT is applied to an interface.
• Configuration allows for load-balancing in DNAT if a pool of IP addresses are
used.
• Port ranges used for translation can be explicitly specified.
• Supports multiple match-lists with different NAT IP Pool or host address.
• In OmniAccess 5740 USG, the default for NAT configuration is dynamic mapping.
The keyword “static” has to be used to convert this setting to static.
• OmniAccess 5740 USG supports reflexive/stateful inspection.
• For Source NAT, if no IP pool or host address is specified, the default is the box's
IP address of the egress interface on which the NAT policy is applied.
To Next Page
Loading...
Need help?
General
