H3C S9500 Series Operation Manual page 21

L3+nat routing switches

Hide thumbs Also See for S9500 Series:

Command manual (1842 pages)

Operation manual (1504 pages)

Operating manual (76 pages)

Table of Contents

Operation Manual – L3+NAT

H3C S9500 Series Routing Switches

Configure a connection-limit policy and bind it to the NAT module. Configure the

upper limit of connections as 1000 (based on the source address) respectively,

which means the number of connections initiated from internal user cannot exceed

1000.

II. Network diagram

10.110.10.1/16

FTP server

Figure 1-4 NAT network diagram

III. Configuration procedure

# Configure an address pool and an ACL.

<Switch> system-view

System View: return to User View with Ctrl+Z.

[Switch] nat address-group 1 202.38.160.101 202.38.160.103

[Switch] acl number 2001

[Switch-acl-basic-2001] rule permit source 10.110.10.0 0.0.0.255

[Switch-acl-basic-2001] quit

# Apply NAT to 10.110.10.0/24 only

[Switch] vlan 10

[Switch-vlan10] port Ethernet 1/1/1

[Switch-vlan10] quit

[Switch] interface Vlan-interface 10

[Switch-Vlan-interface10] nat outbound 2001 address-group 1

[Switch-Vlan-interface10] quit

[Switch] interface nat 2/0/1

[Switch-NAT2/0/1] nat binding interface Vlan-interface 10

# Configure the internal FTP server.

10.110.10.2/16

10.110.10.3/16

WWW server 1

WWW server 2

Host A

10.110.10.100/16

Host B

1-20

Chapter 1 NAT Configuration

10.110.10.4/16

SMTP server

Switch

Vlan-int10

Internet

Table of Contents

H3C S9500 Series Operation Manual page 21

Related Manuals for H3C S9500 Series

Related Products for H3C S9500 Series

Table of Contents