beautypg.com

2 nat pool, Chapter 9 – Asus SL6000 User Manual

Page 81

background image

80

ASUS VPN ADSL Router

Chapter 9

Chapter 9

9.9.2 NAT Pool

With this option you can configure NAT Pools and NAT IP Addresses and
eventually you can associate NAT pools with policies. The NAT database and
access rule database (or the Rule database) are closely associated. Interpretation
of NAT database records is based on the usage of the records in the access rule
database. A general idea about the access rule database is useful for
understanding the NAT database.

1. To add a new NAT Pool, choose the Add New option in the drop down

list.

2. Enter the NAT Pool name in the text box and choose the NAT pool type

from the drop down list.

3. Enter the LAN and Internet IP address values depending on the NAT

pool type you chose and finally click on the [Add] button.

4. To view the existing or the configured NAT pools, choose the NAT

pool name in the drop down list.

5. To delete an existing NAT pool, choose the NAT pool name in the drop

down list and click on the [Delete] button.

Table 9.5 NAT Pool configuration parameters

NAT Pool Name

Type the NAT pool name that you would like to add.

NAT Pool Type

You can select the NAT Pool Type from the drop down list.
* Static: This type of NAT allows one address to be mapped exactly to one

computer in the network. When a packet matches a policy with static NAT
record, no port change will occur. The number of Internet IP addresses
should be equal to the number of LAN IP Addresses.

* Start IP: Specify the starting IP address in LAN and WAN (Internet)
* End IP: Specify the ending IP address in LAN and WAN (Internet)
* Dynamic: This type of NAT allows you to map a set of LAN computers to a

set of Internet IP addresses, in a NAT Record. When this record is
associated with an outbound policy, the source IP address of packets will
be subjected to NAT and directed to one of the available Internet IP
address. If no Internet IP address is free, the packet will be dropped. As an
IP address is assigned to a single computer at any instant of time, there is
no need for port translation.

This manual is related to the following products: