Installation guide

ManualsBrandsCisco ManualsComputer equipmentExplorer 4700

451

452

453

454

455

456

457

458

459

460

12-40

Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance

OL-26645-02

Chapter 12 Configuring Traffic Policies

Configuring Rules and Actions for Policy Maps

NAT The ACE is to implement network address translation (NAT) for this rule.

1. In the NAT Mode field, select the type of NAT to be used:

–

Dynamic NAT—NAT is to translate local addresses to a pool of global addresses.

Continue with Step 3.

–

Static NAT—NAT is to translate each local address to a fixed global address. Continue

with Step 2.

2. If you select Static NAT, do the following:

a. For the IP Address Type, select either IPv4 or IPv6 for the address type.

b. In the Static Mapped v4 or v6 Address field, enter the IP address to use for static NAT

translation. This entry establishes the globally unique IP address of a host as it appears

to the outside world. The policy map performs the global IP address translation for the

source IP address specified in the ACL (as part of the class-map traffic classification).

c. For an IPv4 address, in the Static Mapped Netmask field, select the subnet mask to apply

to the static mapped address.

For an IPv6 address, in the Static Mapped Prefix-length field, enter the prefix length for

the static mapped address.

d. In the NAT Protocol field, select the protocol to use for NAT:

- N/A—This attribute is not set.

- TCP—The ACE is to use TCP for NAT.

- UDP—The ACE is to use UDP for NAT.

e. In the Static Port field, enter the TCP or UDP port to use for static port redirection. Valid

entries are integers from 0 to 65535.

f. In the VLAN Id field, select the VLAN to use for NAT.

3. If you select Dynamic NAT, do the following:

a. In the NAT Pool Id field, enter the number of the pool of IP addresses that exist under

the VLAN specified in the VLAN Id field. Valid entries are integers from 1 to

2147483647. See Configuring VLAN Interface NAT Pools and Displaying NAT

Utilization, page 10-32.

b. In the VLAN Id field, select the VLAN to use for NAT.

Note For dynamic NAT, ACE allows you to associate a non-configured NAT pool ID to the

dynamic NAT action. However, the ANM will not discover the dynamic NAT action when

the NAT pool ID is not configured. You must associate the configured NAT pool ID to the

dynamic NAT action for ANM discovery to complete successfully.

Table 12-17 Layer 3/Layer 4 Network Traffic Policy Map Actions (continued)

Action Description/Steps