1 adding a new dynamic nat configuration – Motorola Series Switch WS5100 User Manual
Page 254
6-30 WS5100 Series Switch System Reference Guide
6. Click the
Add
button to display screen to create a new NAT configuration and add it to the list of available
configurations. For more information, see
Adding a New Dynamic NAT Configuration on page 6-30
.
6.6.1.1 Adding a New Dynamic NAT Configuration
If the existing NAT configurations displayed with the Configuration prove unsuitable for translation, consider
creating a new one.
To define a new NAT configuration:
1. Select
Security
>
NAT
from the main menu tree.
2. Click on the
Dynamic Translation
tab.
3. Click the
Add
button.
4. Define the NAT
Type
from the drop-down menu. Options include:
• Inside - The set of networks that are subject to translation. These are the internal addresses you are
trying to prevent from being exposed to the outside world.
• Outside - All other addresses. Usually these are valid addresses located on the Internet. Outside
addresses pose no risk if exposed over a publicly accessible network.
5. Define the NAT
Direction
from the drop-down menu. Options include:
• Source - The inside network is transmitting data over the network its intended destination. On the
way out, the source IP address is changed in the header and replaced by the (public) IP address.
•
Destination - Packets passing through the NAT on the way back to the switch managed LAN are searched
against to the records kept by the NAT engine. There the destination IP address is changed back to the specific
internal private class IP address in order to reach the LAN over the switch managed network.
6. Use the
Access List
drop-down menu to select the list of addresses to be used during the NAT
translation process. These addresses (once translated) will not be exposed to the outside world when the
translation address is used to interact with the remote destination.
7. Use the
Interface
drop-down menu to select the VLAN used as the communication medium between the
source and destination points within the NAT configuration. Ensure the VLAN selected best represents
the intended network traffic within the NAT supported configuration. vlan1 is available by default.
8. Refer to the
Status
field for the current state of the requests made from applet. This field displays error
messages if something goes wrong in the transaction between the applet and the switch.
9. Click
OK
to use the changes to the running configuration and close the dialog.