Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility Access Point System Reference Guide

179

53-1003100-01

5

Define the following Source NAT parameters.

Select the Destination tab to view destination NAT configurations and define packets passing
through the NAT on the way back to the LAN are searched against to the records kept by the NAT
engine. The destination IP address is changed back to the specific internal private class IP address
to reach the LAN over the network.

Protocol

Select the protocol for use with static translation. TCP, UDP and Any are the available options.
Transmission Control Protocol (TCP) is a transport layer protocol used by applications requiring
guaranteed delivery. It’s a sliding window protocol handling both timeouts and retransmissions. TCP
establishes a full duplex virtual connection between two endpoints. Each endpoint is defined by an
IP address and a TCP port number. The User Datagram Protocol (UDP) offers only a minimal
transport service, non-guaranteed datagram delivery, and provides applications direct access to the
datagram service of the IP layer. UDP is used by applications not requiring the level of service of TCP
or are using communications services (multicast or broadcast delivery) not available from TCP. The
default setting is Any.

Source IP

Enter the address used at the (internal) end of the static NAT configuration. This address (once
translated) will not be exposed to the outside world when the translation address is used to interact
with the remote destination.

Source Port

Use the spinner control to set the local port number used at the (internal) end of the static NAT
configuration. The default value is port 1.

NAT IP

Enter the IP address of the matching packet to the specified value. The IP address modified can be
either source or destination based on the direction specified.

NAT Port

Enter the port number of the matching packet to the specified value. This option is valid only if the
direction specified is destination.

Network

Select Inside or Outside NAT as the network direction. The default setting is Inside.
Select Inside to create a permanent, one-to-one mapping between an address on an internal
network and a perimeter or external network. To share a Web server on a perimeter interface with
the Internet, use static address translation to map the actual address to a registered IP address.
Static address translation hides the actual address of the server from users on insecure interfaces.
Casual access by unauthorized users becomes much more difficult. Static NAT requires a dedicated
address on the outside network for each host. Inside NAT is the default setting.