2 nat pool, Chapter 9 – Asus SL6000 User Manual
Page 81
80
ASUS VPN ADSL Router
Chapter 9
Chapter 9
9.9.2 NAT Pool
With this option you can configure NAT Pools and NAT IP Addresses and
eventually you can associate NAT pools with policies. The NAT database and
access rule database (or the Rule database) are closely associated. Interpretation
of NAT database records is based on the usage of the records in the access rule
database. A general idea about the access rule database is useful for
understanding the NAT database.
1. To add a new NAT Pool, choose the Add New option in the drop down
list.
2. Enter the NAT Pool name in the text box and choose the NAT pool type
from the drop down list.
3. Enter the LAN and Internet IP address values depending on the NAT
pool type you chose and finally click on the [Add] button.
4. To view the existing or the configured NAT pools, choose the NAT
pool name in the drop down list.
5. To delete an existing NAT pool, choose the NAT pool name in the drop
down list and click on the [Delete] button.
Table 9.5 NAT Pool configuration parameters
NAT Pool Name
Type the NAT pool name that you would like to add.
NAT Pool Type
You can select the NAT Pool Type from the drop down list.
* Static: This type of NAT allows one address to be mapped exactly to one
computer in the network. When a packet matches a policy with static NAT
record, no port change will occur. The number of Internet IP addresses
should be equal to the number of LAN IP Addresses.
* Start IP: Specify the starting IP address in LAN and WAN (Internet)
* End IP: Specify the ending IP address in LAN and WAN (Internet)
* Dynamic: This type of NAT allows you to map a set of LAN computers to a
set of Internet IP addresses, in a NAT Record. When this record is
associated with an outbound policy, the source IP address of packets will
be subjected to NAT and directed to one of the available Internet IP
address. If no Internet IP address is free, the packet will be dropped. As an
IP address is assigned to a single computer at any instant of time, there is
no need for port translation.