Cisco 4700M Configuration Manual page 355
Application control engine appliance security
Hide thumbs
Also See for 4700M:
- Administration manual (292 pages) ,
- Upgrade manual (24 pages) ,
- Installation manual (18 pages)
Table of Contents
Advertisement
Chapter 5
Configuring Network Address Translation
Configuring a Layer 3 and Layer 4 Class Map for Server
Farm-Based Dynamic NAT
OL-16202-01
The following SNAT server farm-based dynamic NAT example specifies the nat
command as an action for a Layer 7 policy map:
host1/C1(config)# policy-map type loadbalance http first-match
L7_POLICY
host1/C1(config-pmap-lb)# class L7_CLASS
host1/C1(config-pmap-lb-c)# nat dynamic serverfarm primary 1 vlan 200
To remove a server farm-based dynamic NAT action from a policy map, enter:
host1/C1(config-pmap-lb-c) no nat dynamic serverfarm primary 1
vlan 200
Configure a Layer 3 and Layer 4 traffic class for server farm-based dynamic NAT
by using the class-map command in configuration mode. For more information
about class maps, see the Cisco 4700 Series Application Control Engine
Appliance Administration Guide.
The syntax of this command is as follows:
class-map match-any name
The name argument is a unique identifier for the class map, specified as an
unquoted text string with a maximum of 64 alphanumeric characters.
For example, enter:
host1/C1(config)# class-map match-any NAT_CLASS
host1/C1(config-cmap)#
To remove a class map from the configuration, enter:
host1/C1(config)# no class-map match-any NAT_CLASS
Enter match criteria as required using the match command in class-map
configuration mode. For example, enter:
host1/C1(config-cmap)# match access-list NAT_ACCESS
or
host1/C1(config-cmap)# match source address 192.168.12.15
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
Configuring Server Farm-Based Dynamic NAT
5-29
Advertisement
Table of Contents
