Setting the NAT Configuration

About this task

Network Address Translation (NAT) is a technique to modify network address information within IP packet headers in transit. This enables mapping one IP address to another to protect wireless controller, service platform or access point managed network address credentials. With typical deployments, NAT is used as an IP masquerading technique to hide private IP addresses behind a single, public facing, IP address.

Additionally, NAT is a process of modifying network address information in IP packet headers while in transit across a traffic routing device for the purpose of remapping one IP address to another. In most deployments NAT is used in conjunction with IP masquerading which hides RFC1918 private IP addresses behind a single public IP address.

NAT can provide a profile outbound internet access to wired and wireless hosts connected to a controller, service platform or access point. Many-to-one NAT is the most common NAT technique for outbound internet access. Many-to-one NAT allows a controller, service platform or access point to translate one or more internal private IP addresses to a single, public facing, IP address assigned to a 10/100/1000 Ethernet port or 3G card.

Procedure

  1. Select Configuration → Devices → System Profile from the web UI.
  2. Expand the Security menu and select NAT.

    A blue override icon (to the left of a parameter) defines the parameter as having an override applied. To remove an override go to the Basic Configuration section of the device and click Clear Overrides. This removes all overrides from the device.

    The NAT Pool screen displays by default. The NAT Pool screen lists the NAT policies that have been created thus far. Any of these policies can be selected and applied to a profile.
    Click to expand in new window
    Profile Security - NAT Pool tab
    GUID-2686C902-BC0B-46B0-A381-5EA1CF3797CF-low.png
  3. Review the existing NAT Pool configurations.