Allied-Telesis AT-iMG624A Router Manual PDF (Setup & Configuration Guide)

Page 451 / 998 Scroll up to view Page 446 - 450

NAT command reference

Network address translation - NAT

4-149

iMG/RG Software Reference Manual (IPNetwork Functions)

Example

--> nat add resvmap rm1 globalip extinterface 192.168.68.68 10.10.10.10 ip

See also

NAT ENABLE

NAT LIST GLOBALPOOLS

NAT STATUS

SECURITY LIST INTERFACES

4.4.5.1.11 NAT ADD RESVMAP INTERFACENAME TCP|UDP|BOTH

Syntax

NAT ADD RESVMAP <name> INTERFACENAME <interfacename> <inter-

nalip> {TCP|UDP|BOTH} <portno> [<2ndportno> [<localportno>

[<2ndlocalportno>]]]

Description

This command maps an outside IP security interface (enabled as a NAT object using the

nat enable command) to an individual IP address inside the network. NAT translates pack-

ets between the outside IP address and an individual host based on the transport infor-

mation (TCP or UDP or both) given in this command. A range of external ports can be

translated to a single local port if required.

Note:

Before you can add reserved mapping, you must enable a NAT object using the command NAT ENABLE

You can define reserved mappings for a range of ports and/or translating port numbers.

Options

The following table gives the range of values for each option that can be specified with

this command and a Default Value (if applicable).

rsvp

Resource Reservation Protocol

(RSVP) is set as the

transport type. Supports the reservation of resources

across an IP network. See

http://www.ietf.org/rfc/

rfc2205.txt

.

N/A

ospf

Open Shortest Path First

(OSPF) is set as the trans-

port type. A link-state routing protocol. See

http://

www.ietf.org/rfc/rfc1583

.

N/A

ipip

IP-within-IP Encapsulation Protocol

. Encapsulates

an IP datagram within a datagram. See

http://www.ietf.org/

rfc/rfc2896.txt

.

N/A

all

All traffic is translated between the global IP address and

the specified inside address that it is mapped to.

N/A

protocol

Allows you to identify a protocol by its assigned number.

For details of assigned numbers, see

RFC 1700

.

N/A

Option

Description

Default Value

Page 452 / 998

Network address translation - NAT

NAT command reference

iMG/RG Software Reference Manual (IPNetwork Functions)

4-150

Example

The example below forwards TCP port 25 requests on the WAN interface to

10.10.10.10 port 80:

--> nat add resvmap rm1 interfacename WAN 10.10.10.10 tcp 25

The example below forwards TCP port 80 to 90 requests on the WAN interface to

10.10.10.10 ports 8080 to 8090. Note that the first range must be the same size as the

second range:

--> nat add resvmap rm2 interfacename WAN 10.10.10.10 tcp 80 90 8080 8090

See also

NAT ENABLE

SECURITY LIST INTERFACES

4.4.5.1.12 NAT ADD RESVMAP INTERFACENAME

Syntax

NAT ADD RESVMAP <name> INTERFACENAME <interfacename> <internalip>

{ICMP|IGMP|IP|EGP|RSVP|OSPF|IPIP|ALL|GRE|Protocol<number>

}

Option

Description

Default Value

name

An arbitrary name that identifies a reserved mapping

configuration. It can be made up of one or more letters

or a combination of letters and digits, but it cannot start

with a digit.

N/A

interface name

The name of an existing security interface (external or

DMZ) created and connected to an inside interface

(DMZ or internal) using the NAT ENABLE command.

To display security interfaces, use the SECURITY LIST

INTERFACES command.

N/A

internalip

The IP address of an individual host inside the network

(internal or DMZ interface type).

N/A

portno

Either a single TCP or UDP port number that you want

to use in your reserved mapping configuration, or the

first port number in the range of ports.

N/A

2ndportno

The second TCP or UDP port number in the range that

started with the port specified in portno.

N/A

localportno

Either a single internal TCP or UDP port number or the

first port number in the range of external ports.

N/A

2ndlocalportno

The second internal TCP or UDP port number in the

range of external ports to be used if you have specified

a localportno.

N/A

Page 453 / 998

NAT command reference

Network address translation - NAT

4-151

iMG/RG Software Reference Manual (IPNetwork Functions)

Description

This command maps an outside IP security interface (enabled as a NAT object using the

NAT ENABLE command) to an individual IP address inside the network. NAT translates

packets between the outside IP address and the individual host based on the transport

information given in this command.

Note:

Before you can add reserved mapping, you must enable a NAT object using the command NAT ENABLE

Options

The following table gives the range of values for each option that can be specified with

this command and a Default Value (if applicable).

Option

Description

Default Value

name

An arbitrary name that identifies a reserved mapping

configuration. It can be made up of one or more letters

or a combination of letters and digits, but it cannot start

with a digit.

N/A

interfacename

The name of an existing security interface (external or

DMZ) created and connected to an inside interface

(DMZ or internal) using the NAT ENABLE command.

To display security interfaces, use the SECURITY LIST

INTERFACES command.

N/A

internalip

The IP address of an individual host inside the network

(internal or DMZ interface type).

N/A

icmp

Internet Control Message Protocol

(ICMP) is set as

the transport type. ICMP messages are used for out-of-

band messages related to network operation or mis-

operation. See

http://www.ietf.org/rfc/rfc0792.txt

.

N/A

igmp

Internet Group Management Protocol

(IGMP) is

set as the transport type. Allows Internet hosts to par-

ticipate in multicasting. See

http://www.ietf.org/rfc/

rfc1112.txt

.

N/A

ip

Internetwork Protocol

(IP). Provides all of the Inter-

net’s data transport services.

http://www.ietf.org/rfc/

rfc791.txt

and

http://www.ietf.org/rfc/rfc919.txt

.

N/A

egp

Exterior Gateway Protocol

(EGP). Protocol for

exchanging routing information between autonomous

systems. See

http://www.ietf.org/rfc/rfc904.txt

.

N/A

Page 454 / 998

Network address translation - NAT

NAT command reference

iMG/RG Software Reference Manual (IPNetwork Functions)

4-152

Example

--> nat add resvmap rm1 interfacename extinterface 10.10.10.10 tcp 25

See also

NAT ENABLE

SECURITY LIST INTERFACES

4.4.5.1.13 NAT CLEAR RESVMAPS

Syntax

NAT CLEAR RESVMAPS <interfacename>

Description

This command deletes all NAT reserved mappings that were added to an outside secu-

rity interface using the nat add resvmap commands.

Options

The following table gives the range of values for each option that can be specified with

this command and a Default Value (if applicable).

gre

Generic Routing Encapsulation

(GRE).Tunneling

protocol developed by Cisco that can encapsulate a

wide variety of network layer protocol packet types

inside IP Tunnel See

http://www.ietf.org/rfc/rfc2784.txt

.

N/A

rsvp

Resource Reservation Protocol

(RSVP) is set as the

transport type. Supports the reservation of resources

across an IP network. See

http://www.ietf.org/rfc/

rfc2205.txt

.

N/A

ospf

Open Shortest Path First

(OSPF) is set as the trans-

port type. A link-state routing protocol. See

http://

www.ietf.org/rfc/rfc1583

.

N/A

ipip

IP-within-IP Encapsulation Protocol

. Encapsulates

an IP datagram within a datagram. See

http://

www.ietf.org/rfc/rfc2896.txt

.

N/A

all

Traffic is translated between the global IP address and

the inside address that it is mapped to.

N/A

protocol <num-

ber>

Allows you to identify a protocol by its assigned num-

ber. For details of assigned numbers, see

RFC 1700

.

N/A

Option

Description

Default Value

Page 455 / 998

NAT command reference

Network address translation - NAT

4-153

iMG/RG Software Reference Manual (IPNetwork Functions)

Example

--> nat clear resvmaps extinterface

See also

NAT DELETE RESVMAP

SECURITY LIST INTERFACES

4.4.5.1.14 NAT DELETE RESVMAP

Syntax

NAT DELETE RESVMAP <name> <interfacename>

Description

This command deletes a single NAT reserved mapping that was added to an outside secu-

rity interface using the nat add resvmap commands.

Options

The following table gives the range of values for each option that can be specified with

this command and a Default Value (if applicable).

Example

--> nat delete resvmap rm1 extinterface

See also

nat enable

nat list resvmaps

security list interfaces

4.4.5.1.15 NAT DELETE RESVMAP

Syntax

NAT DELETE RESVMAP <name> <interfacename>

Option

Description

Default Value

interfacename

The name of an existing security interface (exter-

nal or DMZ) created and connected to an inside

interface (DMZ or internal) using the NAT ENA-

BLE command. To display security interfaces, use

the SECURITY LIST INTERFACES command.

N/A

Option

Description

Default Value

name

An existing global IP address. To display global IP

addresses, use the nat list resvmaps command.

N/A

interfacename

The name of an existing security interface (exter-

nal or DMZ) created and connected to an inside

interface (DMZ or internal) using the NAT ENA-

BLE command. To display security interfaces, use

the SECURITY LIST INTERFACES command.

N/A

Rate

Popular Allied-Telesis Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share