Nat translations – Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

950

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

15

FIGURE 146

Access Point - Firewall MAC Firewall Rules screen

The MAC Firewall Rules screen displays the following information:

NAT Translations

Firewall

Network Address Translation (NAT) is a technique to modify network address information within IP
packet headers in transit. This enables mapping one IP address to another to protect wireless
controller managed network address credentials. With typical deployments, NAT is used as an IP
masquerading technique to hide private IP addresses behind a single, public facing, IP address.

NAT can provide a profile outbound Internet access to wired and wireless hosts connected to either
an Access Point or a wireless controller. Many-to-one NAT is the most common NAT technique for
outbound Internet access. Many-to-one NAT allows an Access Point or wireless controller to
translate one or more internal private IP addresses to a single, public facing, IP address assigned to
a 10/100/1000 Ethernet port or 3G card.

To view the Firewall’s NAT translations:

Precedence

Displays a precedence value, which are applied to packets. The rules within an Access Control Entries
(ACL) list are based on their precedence. Every rule has a unique precedence between 1 and 5000. You
cannot add two rules with the same precedence value.

Friendly String

This is a string that provides information as to which firewall the rules apply.

Hit Count

Displays the number of times each WLAN ACL has been triggered.

Refresh

Select the Refresh button to update the screen’s statistics counters to their latest values.