Cisco 4700M Configuration Manual page 349

Chapter 5 Configuring Network Address Translation
Table 5-2
Task and Command Example
10.
11.
12.
13.
14.
15.
16.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
OL-16202-01
Sever Farm-Based Dynamic NAT Configuration Quick Start
(continued)
Configure a Layer 3 and Layer 4 class map and define match criteria.
host1/C1(config)# class-map match-any SLB_CLASS
host1/C1(config-cmap)# match virtual-address 172.16.27.52 tcp eq
http
host1/C1(config-cmap)# exit
Configure a Layer 3 and Layer 4 policy map and associate the class map
with the policy map.
host1/C1(config)# policy-map multi-match SLB_POLICY
host1/C1(config-pmap)# class SLB_CLASS
host1/C1(config-pmap-c)#
Configure Layer 3 and Layer 4 policy map actions.
host1/C1(config-pmap-c)# loadbalance policy L7_POLICY
host1/C1(config-pmap-c)# loadbalance vip inservice
host1/C1(config-pmap-c)# exit
host1/C1(config-pmap)# exit
host1/C1(config)#
Activate the policy on the client interface using a service policy. If you are
operating the ACE in one-arm mode, configure the service-policy
command on the interface specified in Step 14.
host1/C1(config)# interface vlan 100
host1/C1(config-if)# service-policy input SLB_POLICY
host1/C1(config-if)# exit
Configure the NAT pool on the server interface.
host1/C1(config)# interface vlan 200
host1/C1(config-if)# nat-pool 1 172.27.16.10 172.27.26.49
255.255.255.0
host1/C1(config-if)# Ctrl-Z
(Optional) Save your configuration changes to flash memory.
host1/Admin# copy running-config startup-config
Display and verify your server farm-based dynamic NAT configuration.
host1/C1# show running-config class-map
host1/C1# show running-config policy-map
host1/C1# show running-config service-policy
Configuring Server Farm-Based Dynamic NAT
5-23