Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configuring Static Destination NAT for Next Gen Services

Configuring the Destination Pool for Static Destination NAT

To configure the destination pool for static destination NAT:

  1. Create a destination pool.
  2. Define the addresses or subnets to which destination addresses are translated.
  3. To allow the IP addresses of a NAT destination pool to overlap with IP addresses in pools used in other service sets, configure allow-overlapping-pools.

Configuring the NAT Rule for Static Destination NAT

To configure the NAT rule for static destination NAT:

  1. Configure the NAT rule name.
  2. Specify the traffic direction to which the destination NAT rule set applies.
  3. Specify the source addresses of traffic that the NAT rule applies to.

    To specify one address or prefix value:

    To specify a range of addresses, configure an address book global address with the desired address range, and assign the global address to the NAT rule:

    To specify any unicast address:

  4. Specify the destination addresses that the NAT rule applies to.

    To specify a range of addresses, configure an address book global address with the desired address range, and assign the global address to the NAT rule:

    To specify any unicast address:

  5. Specify one or more application protocols to which the destination NAT rule applies. The number of applications listed in the rule must not exceed 3072.
  6. Specify the NAT pool that contains the destination addresses for translated traffic.
  7. Configure the generation of a syslog when traffic matches the destination NAT rule match conditions.

Configuring the Service Set for Static Destination NAT

To configure the service set for static destination NAT:

  1. Define the service set.
  2. Configure either an interface service, which requires a single service interface, or a next-hop service, which requires an inside and outside service interface.

    or

  3. Specify the NAT rule sets to be used with the service set.