Table of Contents
Advertisement
NAT C
OMMANDS
(NAT)
RULE
Mode
NAT Configuration
Usage
You can change the rule order by using the
Firewall is used in conjunction with NAT. Portfwd and masq rules do not implicitly
permit packets. Portfwd rules (actions) are applied before any other firewall and
masq rules (actions) are applied after any other firewall rules. When firewall
protection is enabled, all traffic is blocked by default. You should use the
(Firewall)
source and destination entities you configure for the NAT rules.
Entities should have valid interfaces on which inbound and outbound traffic can
be properly translated. You can use the
command to configure the interfaces.
Removing the NAT rule for an actively translated flow does not stop translating
immediately. This means subsequent packets in the flow are continued to be
translated.
The continued translation after associated NAT rule is removed will only stop
when:
•
C613-50077-01 REV A
Parameter
portfw
<application_name>
portfw <source_entity>
<destination_host_entity>
<1-65535>
all
command to configure firewall rules which allow the same application,
The
clear firewall connections
Command Reference for AT-AR3050S
AlliedWare Plus™ Operating System - Version 5.4.5-2.x
Description
Allow remote hosts to connect to a specific
host or service within a private LAN. This will
forward IPv4 packets on to another device, for
example, forward HTTP traffic to an internal
web server.
Application Name. Application is a high level
abstraction of application packets being
transported by network traffic. You can
configure source port, destination port,
protocol, DSCP, ICMP code and ICMP type for
the application. There are 40 predefined
applications with protocols, source and
destinations ports.You can use the show
application command to show the detail of
these applications.
Source entity name. A entity represents a
logical grouping of subnets, hosts or
interfaces.
The source entity may be an entity outside
your private network.
Target entity name. Target entity must be a
host with one IP address.
Remove a specific rule identified by its rule ID.
Remove all rules.
move rule (NAT)
ip subnet
command and the
command is executed or the flow stops.
command.
rule
ipv6 subnet
2163
- Quick Links:
- Configure Terminal
Hide quick links:
Advertisement
Table of Contents
