Dynamic nat configuration example 2 – Brocade Virtual ADX Security Guide (Supporting ADX v03.1.00) User Manual

64

Brocade Virtual ADX Security Guide

53-1003250-01

Configuring NAT

4

Dynamic NAT configuration example 2

In the following example, the Brocade Virtual ADX is configured to translate inside hosts in the
10.20.0.0 network to unique global addresses in the 192.168.15.15/24 network.

FIGURE 4

Example of a dynamic NAT configuration - translating inside host addresses to unique pool
addresses

This example requires that Interfaces 1and 2 be configured as Inside and Outside interfaces
respectively as shown.

Virtual ADX(config)# interface ethernet 1

Virtual ADX(config-if-e10000-1)# ip address 10.20.50.1 255.255.0.0

Virtual ADX(config-if-e10000-1)# ip nat inside

Virtual ADX(config)# interface ethernet 2

Virtual ADX(config-if-e10000-2)# ip address 192.168.0.1 255.255.0.0

Virtual ADX(config-if-e10000-2)# ip nat outside

The following command creates a pool of IP NAT addresses from 192.168.15.15 to 192.168.15.25
named p1.

Virtual ADX(config)#ip nat pool p1 192.168.15.15 192.168.15.25 prefix-len 24

An ACL is created to permit traffic from inside hosts in the 10.20.0.0 network as shown.

Virtual ADX(config)#access-list 1 permit 10.20.0.0 0.0.255.255

The following command ties the inside source list defined in ACL “1” to the pool named “p1” and
enables PAT to send traffic out the interface defined as “outside”.

Virtual ADX(config)#ip nat inside source list 1 pool p1