Specifications
OmniAccess Reference: AOS-W System Reference
66 Part 031652-00 May 2005
Src-nat – Changes the source IP address of the packet. If no source NAT pool
is specified, the packet will be given the source IP address of the Alcatel
switch. If a NAT pool is specified, the packet will be given an IP address from
the NAT pool. Add a new NAT pool by clicking
New, or manage NAT pools by
navigating to Configuration > Security > Advanced > NAT Pools.
Dst-nat – Changes the destination IP address of the packet to that of the
Alcatel switch. Used primarily for intercepting VPN sessions to outside VPN
concentrators or for captive portal authentication.
Redirect – The redirect action does not modify the packet, but changes the
internal destination of the packet. This action is configured automatically by
the system when Stateful 802.1x is enabled. This action can also be
configured by the administrator to redirect packets to tunnel interfaces.
Log
If the “Log” option is checked, all packets matching the rule will be recorded in
the system logfile. Use caution when enabling this option for high-volume
traffic, since the logfile will quickly grow very large.
Queue
Select this action to place packets outbound to wireless users in either a high
or low priority queue. AOS-W uses strict queueing, meaning that any time
packets are waiting in the high priority queue, they will be transmitted ahead of
packets in the low priority queue.
Rule Ordering
After rules have been defined the order of rules may be changed by clicking on
the up arrow or down arrow next to each rule, as shown in the figure below.
The order of rules is important, since policies are executed from the first rule
sequentially to the last rule.