Network Address Translation Overview
▀ How NAT Works
▄ Cisco ASR 5000 Series Product Overview
OL-22938-02
How NAT Works
The following steps describe how NAT works:
Step 1
In the subscriber profile received from the AAA Manager, the SessMgr checks for the following:
Enhanced Charging Service subsystem must be enabled
In the Firewall-and-NAT policy, NAT must be enabled
The Firewall-and-NAT policy must be valid
For Many-to-One NAT, at least one valid NAT IP pool must be configured in the Firewall-and-NAT
policy, and that NAT IP pool must be configured in the context
Step 2
If all of the above is true, once a private IP address is allocated to the subscriber, the NAT resource to be used for the
subscriber is determined. This is only applicable for not-on-demand allocation mode.
Important:
The private IP addresses assigned to subscribers must be from the following ranges for
them to get translated: Class A 10.0.0.0 – 10.255.255.255, Class B 172.16.0.0 – 172.31.255.255, and Class C
192.168.0.0 – 192.168.255.255
Important:
A subscriber can be allocated only one NAT IP address per NAT IP pool/NAT IP pool
group from a maximum of three pools/pool groups. Hence, at any point, there can be a maximum of three
NAT IP addresses allocated to a subscriber.
Step 3
Flow setup is based on the NAT mapping configured for the subscriber:
In case of one-to-one NAT mapping, the subscriber IP address is mapped to a public IP address. The
private source ports do not change. The SessMgr installs a flow using the NAT IP address and a
fixed port range (1–65535).
In case of many-to-one NAT mapping, a NAT IP address and a port from a port-chunk, are allocated for
each connection originating from the subscriber. In order to identify a particular subscriber call line,
the SessMgr installs a flow using NAT (public) IP a NAT ports allocated for the subscriber.
The following figures illustrate the flow of packets in NAT processing.
Содержание ASR 5000 Series
Страница 1: ......
Страница 26: ......
Страница 48: ...New In Release 10 0 SCM Features Cisco ASR 5000 Series Product Overview OL 22938 02 ...
Страница 50: ......
Страница 58: ......
Страница 67: ...Product Service and Feature Licenses Default Licenses Cisco ASR 5000 Series Product Overview OL 22938 02 ...
Страница 68: ......
Страница 126: ......
Страница 138: ......
Страница 146: ......
Страница 218: ......
Страница 236: ......
Страница 356: ......
Страница 374: ......
Страница 422: ......
Страница 496: ......
Страница 572: ......
Страница 654: ......
Страница 700: ......
Страница 726: ......
Страница 784: ......
Страница 816: ......
Страница 839: ...Network Address Translation Overview How NAT Works Cisco ASR 5000 Series Product Overview OL 22938 02 ...
Страница 841: ...Network Address Translation Overview How NAT Works Cisco ASR 5000 Series Product Overview OL 22938 02 ...
Страница 844: ......
Страница 906: ......
Страница 926: ......
Страница 942: ......
Страница 943: ...Cisco ASR 5000 Series Product Overview OL 22938 02 Chapter 30 Technical Specifications ...
Страница 966: ......
Страница 967: ...Cisco ASR 5000 Series Product Overview OL 22938 02 Chapter 31 Safety Electrical and Environmental Certifications ...
Страница 972: ......