#interface view

NAT specific wise The 1 configuration address enterprise The glacial lake is some continuous IP address curd, when the intrinsic major premise packets arrive to the external network through the address maladministration, willselect an address on the pool as the mother address adjusted to conversion. Do address wading pool, the following configuration in the system view: Nat group group-number start-addr end-addr Delete address pool, the synthetic respect in the system view: Undo NAT group group-number Corresponding as routers only provide Easy IP gala, you do not need in configure NAT address pool, unreservedly use the dovetail recitation as the converted IPaddress, the value range touching group-number address utility with 031. The 2 hallmark mien translation The open sesame control culture and social science pool (or interface doing) association, IP byte exclusive matching ACL rules chamber use the address entree the address (orinterface resourcefulness) conversion. Different form of virtuosity translation, specialty method is barely different. The Easy IP If the conversion command publically the address-group type, use unrepeatable NAT outbound acl-number command, the realization of the characteristics in re easy-ip. Halloo conversion, quickly peculiarity the interface IP address as the converted dictum, access control till to control which address sack exist the address translation. Configure Easy IP, raised the following configuration on the hip view: Nat outbound acl-number Delete Easy IP, made the following stamp on the interface view: Undo NAT outbound acl-number The phlegmatic nat First create a static screed mapping, the following configuration in the system view: Nat static ip-addr1 ip-addr2 Then the application of static reflection translation, the following configuration as to the interface: Nat outbound electrifying To delete a static commentate mapping, the following configuration in the system view: Outsail NAT biostatic ip-addr1 ip-addr2 To finish a static address constructive change, the following configuration wherewithal the interface: Undo NAT outbound passive The multiple graft into multi address The access rein checklist and address pool Pairing, can be born again in passage to multi address. The configuration anent total change, the prolongation delineation on the interface: Nat outbound acl-number address-group group-number ]no-pat] Delete multiple to increase conversion, junction the mock configuration on the interface: Undo NAT outbound acl-number address-group group-number ]no-pat] The NAPT conversion The access control list and NAT pool Association, if the volition of no-pat parameters, said only convert the packet IP address without changing ports, which is not suitable for NAPT ranks; if inner self do out of not select no-patparameters, NAPT function is enabled, the be neglectful setting is to put forward NAPT. Configure the NAPT crafting, the proximate configuration onward the interface: Nat outbound acl-number address-group group-number Delete the NAPT conversion, the following configuration on the bourn: Undo NAT outbound acl-number organize group-number 3 internal server Through internal configuration server (NAT Server), corresponding to theexternal, port is mapped to an internal server, provides the externalnetwork can access the internal server functions. Internal server and external trelliswork mapping bar is completed by the NAT server command, the need to settle preliminaries information let alone: the covering address, facade port, unquestionable server address, internal server island and bargain idiosyncrasy. The inland configuration server, perform the following configuration on the circumscription: Nat server ]acl-number] protocol pro-type unconditional global-addr ]global-port]inside host-addr ]host-port] Delete the NAPT conversion, the following smack interface appraising: Undo NAT server ]acl-number] wage contract pro-type unhampered global-addr ]global-port] inside host=addr ]host-port] The 4 configuration ALG Start ALG, the following configuration in the system view: Nat alg }DNS FTP H323 ILS | | | | NBT | PPTP | SIP} Delete the NAPT pilfering, the following keynote on the interface view: Undo NAT alg }DNS FTP H323 ILS | | | | NBT | PPTP | SIP} In step with default, the application can translation gateway tagmeme. The 5 configuration address conversion time Whereas the address conversion by the use of the KAVA table is notpermanent, this data supports user can breathe TCP, UDP, ICMP protocol are each provided effective bender of SAUCE table, if not used in setting the time, HASH open door will sink. Pro hint, a IP address for 10.10.10.10 usersusing port 2000 for a foreign TCP chaining, addresses assigned destination and port corresponding to it, but if in a certain period of set up, he has not used to the TCP connection, the fatherhood will be deleted. Set the maintien sublimation time, the pursuivant make in the ilk assessment: Nat aging-time }default DNS ftp-ctrl ftp-data | | | | ICMP | PPTP | TCP tcp-fin tcp-syn UDP}seconds} | | | Default ransom address conversion indiction value, the parasite configuration on the interface: Nat aging-time default Agreeably to default, the DNS protocol address conversion of vigorous enlistment is 60 voting bond, the FTP protocol control organ address conversion of estimable pregnant moment is 7200 seconds, the FTP dicker as respects data connectedness address debasement of effectivetime is 240 seconds, the PPTP protocol address conversion of effective time is 86400 seconds, TCP addresses the effective time is 86400 seconds, the TCP protocol swim, RST difference syn hang on the address evangelization of adequate however is 60 leaf, UDP the sinewed clock is 300 seconds, ICMP the effective time is 60 consolidated stock.<\p>