Huawei quidway s7700 Configuration Manual page 119
Smart routing switch
Hide thumbs
Also See for quidway s7700:
- Configuration manual (833 pages) ,
- Configuration manual - ethernet (648 pages) ,
- Configuration manual - multicast (551 pages)
Table of Contents
Advertisement
Quidway S7700 Smart Routing Switch
Configuration Guide - SPU
Step 2 Configure DNS mapping on the SPU so that the IP address of host A returned from the DNS
server to PC1 is translated to a unique temporary address.
[SPU] nat alg dns enable
[SPU] nat dns-map www.Server.com 192.168.20.2 80 tcp
Step 3 Configure the mapping between the overlapped address pool and the temporary address pool on
the SPU.
[SPU] nat overlap-address 0 192.168.20.2 202.169.100.2 pool-length 254 inside-vpn-
instance vpna
Step 4 Configure the static route from the temporary address pool to Eth-Trunk 1.2 on the SPU.
[SPU] ip route-static vpn-instance vpna 202.169.100.2 24 Eth-Trunk1.2 202.169.10.2
Step 5 On the outbound sub-interface Eth-Trunk1.2 of the SPU, configure NAT outbound for host A.
1.
2.
3.
Step 6 Verify the configuration.
Run the display nat overlap-address all command on the SPU, and you can view the mapping
between the overlapped address pool and the temporary address pool.
[SPU] display nat overlap-address all
Nat Overlap Address Pool To Temp Address Pool Map Information:
-------------------------------------------------------------------------------
Id
-------------------------------------------------------------------------------
0
-------------------------------------------------------------------------------
Total : 1
Run the display nat outbound command on the SPU, and you can view information about
outbound NAT.
[SPU] display nat outbound
NAT Outbound Information:
-----------------------------------------------------------------
Interface
-----------------------------------------------------------------
Eth-Trunk1.2
-----------------------------------------------------------------
Total : 1
----End
Configuration Files
l
Issue 01 (2011-07-15)
[SPU] interface XGigabitEthernet0/0/2
[SPU-XGigabitEthernet0/0/2] eth-trunk 1
[SPU-XGigabitEthernet0/0/2] quit
Create an ACL and configure an ACL rule to allow packets of host A to pass through.
[SPU] acl 3180
[SPU--acl-adv-3180] rule permit ip vpn-instance vpna source 192.168.20.1
0.0.0.255
[SPU--acl-adv-3180] quit
Configure the NAT address pool for outbound NAT.
[SPU] nat address-group 1 160.160.0.2 160.160.0.254
On the outbound sub-interface Eth-Trunk1.2, configure outbound NAT for host A.
[SPU] interface Eth-Trunk 1.2
[SPU-Eth-Trunk1.2] nat outbound 3180 address-group 1
[SPU-Eth-Trunk1.2] quit
Overlap-Address
Temp-Address
192.168.20.2
202.169.100.2
Configuration file of the SPU
#
sysname SPU
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Pool-Length
254
Acl
Address-group/IP
3180
3 NAT Configuration
Inside-VPN-Instance-Name
Type
1
pat
vpna
108
Advertisement
Table of Contents
