6 configuring nat information, 1 defining dynamic nat translations, 6 configuring nat information -28 – Motorola Series Switch WS5100 User Manual
Page 252: 1 defining dynamic nat translations -28, Configuring nat information
6-28 WS5100 Series Switch System Reference Guide
4. Select an interface and click the
Delete
button to delete the ACL interface from the switch.
5. Click the
Export
to export the selected ACL attribute to a user specified location.
6.6 Configuring NAT Information
Network Address Translation NAT provides the translation of an Internet Protocol (IP) address within one
network to a different, known IP address within another network. One network is designated the private
network, while the other is the public. NAT provides a layer of security by translating private (local) network
addresses to one or more public IP addresses. For example, when an administrator wants to allow individuals
on the WAN side access to a particular FTP or web server that is located on one of the LAN subnets but does
not want to permit any other access, NAT is the appropriate solution.
NAT operates on the switch to connect two networks together. An inside network is addressed with
addresses requiring conversion into valid addresses before packets can be forwarded to an outside network.
The translation process operates in parallel with packet routing.
NAT enables network administrators to move a Web or FTP Server to another host without having to
troubleshoot broken links. Change the inbound mapping with the new inside local address to reflect the new
host. Configure changes to your internal network seemlessly since the only external IP address either
belongs to the switch or from a pool of global addresses.
The switch NAT configuration process is divided into the following activities:
•
Defining Dynamic NAT Translations
•
Defining Static NAT Translations
•
•
6.6.1 Defining Dynamic NAT Translations
The switch Dynamic NAT functionality creates active translation entries when a packet crosses from an IP
NAT inside interface to an IP NAT outside interface, or vice versa. Dynamic NAT requires packets to be
switched through the NAT router to generate translations in the switch’s translation table.
Refer to the NAT screen’s
Dynamic Translation
tab to view existing dynamic NAT configurations available
to switch.
To view and add/edit a dynamic NAT configuration:
1. Select
Security
>
NAT
from the main menu tree.
2. Click on the
Dynamic Translation
tab.
High Destination IP
Displays the High Destination IP Address.
Times Used
Displays the number of instances this ACL has been used. Periodically review this among
ACLs to determine whether specific ACLs should be deleted or modified to make relevant.