Specifications
Configuring NAT
September 08, 2010 Page 9 of 18
NAT Binding
ANATflowhastwodevicesassociatedwithitthatareincommunicationwitheachother:the
clientdevicebelongingtotheinside(private)networkandtheserverdevicebelongingtothe
outside(public)network.EachactiveNATflowhasabindingresourceassociatedwithit.Each
flowisbasedupon
thefollowingcriteria:
Ifitisanon‐FTPNATflow:
•SourceIPAddress‐TheinsideclientIPaddress
• DestinationIPAddress‐TheoutsideserverIPaddress
IfitisaNAPTorFTPflow:
•SourceIPAddress‐TheinsideclientIPaddress
• DestinationIPAddress‐TheoutsideserverIPaddress
•SourcePort‐
Theinsideclientsourceport
• DestinationPort‐Theoutsideserverdestinationport
Enabling NAT
Whentrafficsubjecttotranslationoriginatesfromorisdestinedtoaninterface,thatinterfacemust
beenabledforNAT.Iftheinterfaceispartoftheinternalprivatenetwork,itshouldbeenabledas
aninsideinterface.Iftheinterfaceispartoftheexternalpublicnetwork,itshouldbe
enabledasan
outsideinterface.
Configuring NAT
ThissectionprovidesdetailsfortheconfigurationofNATontheS‐SeriesandN‐Seriesproducts.
Table 1listsNATparametersandtheirdefaultvalues.
Table 1 Default NAT Parameters
Parameter Description Default Value
Inside NAT Interface
Type
Specifies that NAT should be enabled
on this interface as a local private
network interface.
None
Outside NAT Interface
Type
Specifies that NAT should be enabled
on this interface as an external public
network interface.
None
Pool Name Identifies a group of NAT IP addresses
used by the dynamic address binding
feature for NAT translation.
None
Pool IP Address Range Specifies the start and end of a range
of IP addresses for this NAT pool.
None
Access List Specifies a list of IP addresses to
translate when enabling dynamic
translation of inside source addresses.
None