Adding a Source NAT Rule Parent topic

Source NAT (SNAT) changes the source address in the IP header of a packet. The primary purpose is to change the private (RFC 1918) address/port into a public address/port for packets leaving the network. The following table explains the required configurations if using SNAT.

Procedure

  1. Go to NetworkNATAdd New.
  2. Configure the NAT settings based on the NAT type, then click Apply.
    Option Description
    NAT type
    Select Source NAT to specify settings when IP packets are received.
    Egress Interface
    Select ANY or any L3 interface from the drop-down box list to act as an interface for egress traffic, which is traffic that originates from inside the network.
    Source IP translation
    Select from the following options:
    • Egress interface IP address—Egress interface IP address is used for translation. When not using the egress interface IP address, users must explicitly specify an interface with one of the next three options.
    • Single IP address—IP address specified will be used for translation.
    • IP address range—IP address range specified will be used for translation.
    • Subnet—Subnet specified will be used for translation.
    Description
    Specify an identifying characteristic about use or configuration for the NAT rule.
    Advanced options for SNAT
    Allow users to specify more detailed information or matching conditions, including:
    • Protocol—Any, TCP, or UDP. Any means all protocols.
    • Source IP address range—Specified by the network.
    • Source Port range—Specified by administrator.
    • Destination IP address range—Specified by administrator.
    • Destination Port range—Specified by administrator.
  3. Verify that the new rule is added to the list at NetworkNAT.