beautypg.com

Setting the profile’s nat configuration – Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 185

background image

Brocade Mobility Access Point System Reference Guide

175

53-1003100-01

5

5. Select the + Add Row button to add a column within the Certificate Revocation List (CRL)

Update Interval table to quarantine certificates from use in the network.

Additionally, a certificate can be placed on hold for a user defined period. If, for instance, a private
key was found and nobody had access to it, its status could be reinstated.

6. Provide the name of the trustpoint in question within the Trustpoint Name field. The name

cannot exceed 32 characters.

7. Enter the resource ensuring the trustpoint’s legitimacy within the URL field.

8. Use the spinner control to specify an interval (in hours) after which a device copies a CRL file

from an external server and associates it with a trustpoint.

9. Select OK to save the changes made within the Certificate Revocation List (CRL) Update

Interval screen. Select Reset to revert to the last saved configuration.

Setting the Profile’s NAT Configuration

Profile Security Configuration

Network Address Translation (NAT) is a technique to modify network address information within IP
packet headers in transit across a traffic routing device. This enables mapping one IP address to
another to protect network address credentials. With typical deployments, NAT is used as an IP
masquerading technique to hide private IP addresses behind a single, public facing, IP address.

NAT is a process of modifying network address information in IP packet headers while in transit
across a traffic routing device for the purpose of remapping one IP address to another. In most
deployments, NAT is used in conjunction with IP masquerading which hides RFC1918 private IP
addresses behind a single public IP address.

NAT can provide a profile outbound Internet access to wired and wireless hosts connected to an
access point. Many-to-one NAT is the most common NAT technique for outbound Internet access.
Many-to-one NAT allows an access point to translate one or more internal private IP addresses to a
single, public facing, IP address assigned to a 10/100/1000 Ethernet port or 3G card.

To define a NAT configuration that can be applied to a profile:

1. Select the Configuration tab from the Web UI.

2. Select Devices.

3. Select System Profile from the options on left-hand side of the UI.

4. Expand the Security menu and select NAT.

See also other documents in the category Brocade Computer Accessories: