Nat - Apollo VioNet 3000 series User Manual And Instruction Manual

Vionet 3000 series mobile router

Hide thumbs Also See for VioNet 3000 series:

User manual and instruction manual (35 pages)

Operating instructions (5 pages)

Operating instruction (5 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

Table of Contents



Option: LIST ALL ACCESS-LIST

Displays all the entries from an Access Control List.

Access Lists>list all access-list 100

Extended Access List 100, assigned to no protocol

ACCESS LIST CACHE. Hits = 0, Miss = 0

Cache size: 32 entries, Promotion zone: 6 entries

ACCESS LIST ENTRIES

PERMIT

SRC=172.25.54.33/32

PROT=21

DENY

SRC=0.0.0.0/0

PERMIT

SRC=0.0.0.0/0

PROT=21-44

Access Lists>

9.3

NAT

9.3.1

Port NAT

This is a very special case of dynamic NAT and currently is the type of NAT most used. Here there are

many local addresses which are translated to the same global address. Now an arbitrary number of

connections are multiplexed using port information (TCP, UDP). The number of simultaneous connections

is limited only by the number of NAT ports available.

The main problem with this type of NAT is that many services only accept connections coming from

privileged ports in order to ensure that it does not come from an ordinary user. To support NAPT, you need

to maintain handlers for each TCP, UDP connection.

To configure port NAT, you need to create a rule within in IP protocol. Configure the following parameters in

this rule:



Local-ip to be used to send the packets through.



Remote-ip, this indicates if this rule is going to be used as an IP, a network, or all.



Indicates that NAPT is going to be executed.

A representation of the parameters that need to be configured is:

protocol ip

rule 1 local-ip <NAT interface address> remote-ip <network address>

rule 1 napt translation

exit

To conduct troubleshooting, enable the NAPT events.

06/13/05 12:12:02

06/13/05 12:12:03

The configuration shown up until now only permits everything to leave with the same source IP address. To

reach an internal machine from the exterior, a port must be opened. An example of the configuration is as

follows:

protocol ip

nat pat

visible-port 80 rule 1 ip 192.168.1.3 port 80

exit

DES=192.34.0.0/16

DES=0.0.0.0/0

SPORT=34-56

DPORT=2-4

NAPT.004 In (172.25.6.1[1] => 192.168.1.13[512])

NAPT.003 Out (192.168.1.13[512] => 172.25.6.1[1])

NAPT.004 In (172.25.6.1[1] => 192.168.1.13[512])

NAPT.003 Out (192.168.1.13[512] => 172.25.6.1[1])

NAPT.004 In (172.25.6.1[1] => 192.168.1.13[512])

Apollo Video Technology

Avenue Southeast – Bothell, WA 98021-8990

24000-35

Toll Free: 888-AVT-USA1; Tel: 425.483.7100; Fax: 425.483.7200

www.apollovideo.com

VioNet 3000 Series Mobile Router | User Guide

Conn:0

Conn:33?

Page 135

Table of Contents

Troubleshooting

This manual is also suitable for:

Vn-3001 Vn-3011a Vn-3011b Vn-3021c

Nat - Apollo VioNet 3000 series User Manual And Instruction Manual

NAT

Troubleshooting

Related Manuals for Apollo VioNet 3000 series

Related Products for Apollo VioNet 3000 series

This manual is also suitable for:

Table of Contents