Configuring Outbound NAT
Enabling outbound NAT allows servers on a non-routable network to communicate with hosts on
the internet by mapping the server's IP address to another IP address that is routable on the
internet. On Equalizer, this is disabled by default. Enabling this option has a performance impact,
since Equalizer needs to modify every packet sent and received on server subnets.
Outbound NAT can be configured to map the server's IP address to any Equalizer IP address on
the outbound subnet. This includes the main IP address, Failover IP address or any cluster IP
address on that subnet.
Note
- Because outbound NAT is configured on a subnet basis, individual servers cannot be set up for different out-
bound NAT IP addresses unless they are in different subnets.
When outbound NAT rules are configured for a subnet, the system treats packets on that subnet as
if they are part of the external subnet through which they are being NAT' d.
Configuring outbound NAT using the GUI:
1. Configure outbound NAT using either of the following methods:
l
Enter a
From
IP and the
Up To
IP which specifies the IP range. Also enter the
Out
(outbound NAT IP) address.
l
Enter a
from
IP, without the
Up To
IP.Also enter the
Out
(outbound NAT IP)
address.
The
From
address is the source IP address (or range of addresses) to which this NAT
rule applies. Use a CIDR-format IP address to specify a range. If the source IP
address of an outbound packet matches this IP address (or falls within the specified
range), then the packet is modified to use the IP address specified by the
Out
parameter as the source IP.
The
Out
address specifies that if the source IP address of an outbound packet matches
the IP address (or IP address range) specified by the
From
parameter, then the packet
is modified to use this IP address as the source IP.
Copyright © 2014 Coyote Point Systems, A Subsidiary of Fortinet, Inc.
All Rights Reserved.
307
Equalizer Administration Guide
Summary of Contents for Equalizer GX Series
Page 18: ......
Page 32: ...Overview 32 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Page 42: ......
Page 52: ......
Page 64: ......
Page 72: ......
Page 76: ......
Page 228: ......
Page 238: ......
Page 476: ......
Page 492: ......
Page 530: ......
Page 614: ......
Page 626: ......
Page 638: ......
Page 678: ......
Page 732: ...Using SNMP Traps 732 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Page 754: ......
Page 790: ......
Page 804: ......
Page 842: ......
Page 866: ......