Configuring Network Address Translation
48
PR2000 Installation Guide
connection cannot be started from an external system unless there is a static
translation defined for the pair of IP addresses.
7.2 Configuring NAT
The first configuration related to NAT is in the interface configuration (Config-
>Interface-><interface>->Network Protocol), where you need to configure the
"Address scope" for the interface. If an interface is defined as "Local", NAT will
translate it to a global address before sending a packet to the global network. If
the scope is defined as "Global", then NAT will consider the IP address for that
interface global. "Global Assigned" is the same as "Global", but also allows the
PR2000 to use an address assigned to the interface by a remote server (in a
PPP connection, for example) as a global address for NAT purposes.
The NAT Configuration in the PR2000 is found under Config->Security->NAT.
Cyclades-PR2000 (PR2000 name) Configure NAT Menu
1-Global Address
2-Local Address
3-Static Translation
4-Timeout and Options
Select option ==>
Selecting Global Address allows you to define global address ranges. The
addresses in these ranges are the pool of global (registered) addresses that the
router can use to dynamically map local addresses when connections between
the local and global networks are established.
The Local Address option allows you to define the ranges of addresses that
are to be considered local (internal, non-registered) and, therefore, need to be
mapped to global addresses.
The Static Translation option allows you to define up to 64 static translation
entries. Each entry defines a pair of local and global addresses that are
statically mapped. Of course, an address translated statically cannot be used in
a dynamic translation.
Including the static and dynamic translations, the current implementation of NAT
supports up to 1024 simultaneous translations (1024 entries in the NAT table).
Timeouts and Options let you define NAT timeouts and options.
