Extreme Networks ExtremeWare Command Reference Manual page 475
Version 7.5
Hide thumbs
Also See for ExtremeWare:
- Command reference manual (2620 pages) ,
- Command reference manual (2254 pages) ,
- Command reference manual (1598 pages)
Table of Contents
Advertisement
configure nat add vlan map
Using Layer 4 Port Numbers. The addition of the
optional keyword allows the NAT rule to
l4-port
be applied to only packets with a specific layer 4 source or destination port. If you use the layer 4-port
command after the source IP/mask, the rule matches only if the port(s) specified are the source layer
4-ports. If you use the
command after the destination IP/mask, the rule matches only if the
l4-port
port(s) specified are the destination layer 4 ports. Both options can be used together to further limit the
rule. If you specify layer 4 ports, ICMP traffic will not be translated and allowed to pass.
Rule Processing. Rules are processed in order, usually in the order in which they were added. When
a single rule is matched, no other rules are processed. You can view the rule order using the
show nat
command.
rules
Examples
Static Mapping. The following command defines a static translation rule that specifies that traffic
coming from 192.168.1.12 will be mapped to 216.52.8.32 on the outside VLAN called out_vlan_1:
configure nat add out_vlan_1 map source 192.168.1.12/32 to 216.52.8.32/32
Using /32 as the netmask for both the
and
netmasks specifies static translation.
source
to
Dynamic Mapping. The following command defines a dynamic translation rule that specifies that
traffic coming from subnet 192.168.1.0 will be mapped to IP addresses in the range of 216.52.8.1 to
216.52.8.31 on outside VLAN
:
out_vlan_1
configure nat add out_vlan_1 map source 192.168.1.0/24 to 216.52.8.1 - 216.52.8.31
Port Mapping. The following command defines a translation rule that specifies that TCP/UDP packets
coming from 192.168.1.12 and destined for 192.168.5.20 will be mapped to 216.52.8.32 on outside VLAN
:
out_vlan_1
configure nat add out_vlan_1 map source 192.168.1.12/32 destination 192.168.5.20 to
216.52.8.32/32
The following command defines a portmap translation rule that specifies that both TCP and UDP traffic
from subnet 102.168.2.0/25 will be mapped to available layer 4 ports on the IP addresses in the subnet
216.52.8.32/28:
configure nat add out_vlan_2 map source 192.168.2.0/25 to 216.52.8.32 /28 both portmap
The following command defines a portmap translation rule that specifies that only TCP traffic from
subnet 102.168.2.0/25 be mapped to layer 4 ports in the range of 1024-8192 on the IP addresses in the
subnet 216.52.8.64/28:
configure nat add out_vlan_2 map source 192.168.2.128/25 to 216.52.8.64/28 tcp portmap
1024 - 8192
Auto-constraining. The following command specifies an auto-constrain NAT translation rule that
applies to both TCP and UDP traffic:
configure nat add out_vlan_3 map source 192.168.3.0/24 to 216.52.8.64/32 both
auto-constrain
History
This command was first available in ExtremeWare 6.2.
This command was added to the Summit "e" series of switches in ExtremeWare 7.1e.
ExtremeWare 7.5 Command Reference Guide
475
Advertisement
Table of Contents
Related Manuals for Extreme Networks ExtremeWare
Related Products for Extreme Networks ExtremeWare
- Extreme Networks ExtremeWare XOS Command
- Extreme Networks ExtremeWare Enterprise Manager
- Extreme Networks EPICenter Guide
- Extreme Networks ExtremeXOS ScreenPlay
- Extreme Networks ExtremeWireless AP460i
- Extreme Networks ExtremeWireless AP460e
- Extreme Networks ExtremeSwitching Virtual Services Platform 4450GSX-DC
- Extreme Networks ExtremeSwitching 3600 Series
- Extreme Networks ExtremeSwitching ISW Series
- Extreme Networks ExtremeSwitching X440-G2-12t-10GE4
- Extreme Networks ExtremeSwitching X440-G2-12p-10GE4
- Extreme Networks ExtremeSwitching X440-G2-48t-10GE4
- Extreme Networks ExtremeSwitching X440-G2-12t8fx-GE4
- Extreme Networks ExtremeSwitching X450-G2-48t-10GE4
- Extreme Networks ExtremeSwitching X620-10x
- Extreme Networks ExtremeSwitching X460-G2-24p-10GE4