7.3. NAT Pools
This example creates a NAT pool with the external IP address range 10.6.13.10 to 10.16.13.15 which is then
used in a NAT IP rule for HTTP traffic on the wan interface.
Web Interface
A. First create an object in the address book for the address range:
1.
Go to Objects > Address Book > Add > IP address
2.
Specify a suitable name for the IP range nat_pool_range
3.
Enter 10.6.13.10-10.16.13.15 in the IP Address textbox
(a network such as 10.6.13.0/24 could be used here - the 0 and 255 addresses will be automatically
removed)
4.
Click OK
B. Next create a stateful NAT Pool object called stateful_natpool :
1.
Go to Objects > NAT Pools > Add > NAT Pool
2.
Now enter:
•
Name: stateful_natpool
•
Pool type: stateful
•
IP Range: nat_pool_range
3.
Select the Proxy ARP tab and add the WAN interface
4.
Click OK
C. Now define the NAT rule in the IP rule set
1.
Go to Rules > IP Rules > Add > IP Rule
2.
Under General enter:
•
Name: Enter a suitable name such as nat_pool_rule
•
Action: NAT
3.
Under Address filter enter:
•
Source Interface: int
•
Source Network: int-net
•
Destination Interface: wan
•
Destination Network: all-nets
•
Service: HTTP
4.
Select the NAT tab and enter:
•
Check the Use NAT Pool option
•
Select stateful_natpool from the drop-down list
5.
Click OK
348
Chapter 7. Address Translation