Creating a NAT Policy |
50
Configuring NAT Policies
NAT policies allow you the flexibility to control Network Address
Translation based on matching combinations of Source IP
address, Destination IP address and Destination Services.
Policy-based NAT allows you to deploy different types of NAT
simultaneously. The following NAT configurations are available
in SonicOS:
• Many-to-One NAT Policy
• Many-to-Many NAT Policy
• One-to-One NAT Policy for Outbound Traffic
• One-to-One NAT Policy for Inbound Traffic (Reflexive)
• One-to-Many NAT Load Balancing
• Inbound Port Address Translation via One-to-One NAT Policy
• Inbound Port Address Translation via WAN IP Address
This section describes how to configure a Many-to-One NAT
policy. Many-to-One is the most common NAT policy on a Dell
SonicWALL security appliance, and allows you to translate a
group of addresses into a single address. Most of the time, this
means that you are taking an internal “private” IP subnet and
translating all outgoing requests into the IP address of the Dell
SonicWALL security appliance WAN port, such that the
destination sees the request as coming from the IP address of
the Dell SonicWALL security appliance WAN port, and not from
the internal private IP address.
For other NAT configurations, see the
SonicOS Administrator’s
Guide
.
An example configuration illustrates the use of the fields in the
Add NAT Policy procedure. To add a Many-to-One NAT policy
that allows all systems on the
X1
interface to initiate traffic using
the Dell SonicWALL security appliance’s WAN IP address,
perform the following steps:
1.
Navigate to the
Network
>
NAT
Policies page. Click
Add
.
The
Add NAT Policy
dialog box displays.
2.
For
Original Source
, select
Any
.
3.
For
Translated Source
, select
WAN Interface IP
.
4.
For
Original Destination
, select
Any
.
5.
For
Translated Destination
, select
Original
.
6.
For
Original Service
, select
Any
.
7.
For
Translated Service
, select
Original
.
8.
For
Inbound Interface
, select
X1
.
9.
For
Outbound Interface
, select
X1
.
10. For
Comment
, enter a short description.
11. Select the
Enable NAT Policy
checkbox.
12. Leave
Create a reflexive policy
unchecked.
13. Click
Add
.
This policy can be duplicated for subnets behind the other
interfaces of the Dell SonicWALL security appliance – just
replace the
Original Source
with the subnet behind that
interface, adjust the source interface, and add another NAT
policy.
Содержание NSA E5500
Страница 1: ...Getting Started Guide Dell SonicWALL E Class NSA Appliances NETWORK SECURITY NSA E5500 ...
Страница 17: ......
Страница 64: ...M5 SCREW 8 M5 Nut 8 Assemble the Slide Rail Fasten two sided screws to the rail 2 C C ...
Страница 65: ...Assemble Inner Rail to Chassis Fasten 6 screws to attach the inner channel onto the chassis M4 SCREW 6 3 D D ...
Страница 66: ...Insert Chassis to Frame 4 Push hook down to separate Slide inner channel into rails ...
Страница 67: ......
Страница 74: ......