EasyManua.ls Logo

ELTEX ESR-10 - Page 572

ELTEX ESR-10
650 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
ESR series service routers.ESR-Series. User manual
572
Step Description Command Keys
9 Specify the profile of IP
addresses {sender | recipient}
for which the rule should work.
esr(config-dnat-rule)# match
[not]
{source|destination}-address
<OBJ-GROUP-NETWORK-NAME>
<OBJ-GROUP-NETWORK-NAME> – IP
addresses profile name, set by the
string of up to 31 characters.
'Any' value points at any source IP
address.
10 Specify the profile of services
(TCP/UDP ports) {sender |
recipient} for which the rule
should work (optional).
esr(config-dnat-rule)# match
[not]
{source|destination}-port
<PORT-SET-NAME>
<PORT-SET-NAME> – port profile
name, set by the string of up to 31
characters. 'Any' value points at any
source TCP/UDP port.
11 Set name or number of IP for
which the rule should work
(optional).
esr(config-dnat-rule)# match
[not]
{protocol <TYPE> | protocol-id
<ID> }
<TYPE> – protocol type, takes the
following values: esp, icmp, ah, eigrp,
ospf, igmp, ipip, tcp, pim, udp, vrrp, rdp,
l2tp, gre. 'Any' value points at any
protocol type.
<ID> – IP identification number, takes
values of [0x00-0xFF].
12 Specify the type and code of
ICMP messages for which the
rule should work (if ICMP is
selected as protocol)
(optional).
esr(config-dnat-rule)# match
[not]
icmp
{<ICMP_TYPE><ICMP_CODE> |
<TYPE-NAME>}
<ICMP_TYPE> – ICMP message type,
takes values of [0..255].
<ICMP_CODE> – ICMP message code,
takes values of [0..255]. 'Any' value
points at any message code.
<TYPE-NAME> – ICMP message type
name.
13 Specify the action 'translation
of source address and port' for
the traffic meeting the
requirements of 'match'
commands.
esr(config-dnat-rule)# action
destination-nat
{ off | pool <NAME> | netmap
<ADDR/LEN> }
off – translation is disabled;
pool<NAME> – name of the pool that
contains IP addresses and/or TCP/
UDP ports set;
netmap <ADDR/LEN> – subnet IP
address and mask used during
translation. The parameter is defined
as AAA.BBB.CCC.DDD/EE where each
part AAA-DDD takes values of [0..255]
and EE takes values of [1..32].
14 Activate a configured rule. esr(config-dnat-rule)# enable

Table of Contents

Related product manuals