Link Search Menu Expand Document

NAT Rules and Pools

Configuration > Networking > NAT

You can add NAT rules by completing all the values in the table shown below. Each NAT rule has a directional field or value. Outbound rules are applied to the traffic flows initiated from the LAN, destined to the SD-WAN fabric. Inbound rules are applied to the traffic flows initiated from the SD-WAN fabric destined to the LAN. Return traffic for a given flow does not require an additional rule. The destination IP address must be configured for each rule.

NOTE: You must disable advertisements of local, static routes on the LAN side at the site so the routes are completely unique. Additionally, you must configure announce-only static routes for your NAT pools and advertise them to the SD-WAN fabric by allowing those routes in your “Redistribute routes to SD-WAN fabric” route map.

Complete the following steps to add a rule to your NAT:

  1. Select Add Rule.

  2. Complete the following values in the table by selecting any of the columns.

    Field Description
    Priority Order in which the rules are executed; the lower the priority, the higher the chance your NAT rule will be applied.
    LAN Interface Name of the LAN interface the NAT rule is using. This is configurable for an outbound NAT rule only.
    Segment Name of the segment being used.
    Direction Select the direction the traffic is going:

    Outbound (LAN to Fabric)

    Inbound (Fabric to LAN)
    Protocol Type of protocol being used for each NAT.
    Source Original source IP address of the IP packet.
    Destination Address of the LAN/WAN interface where the traffic is going to.
    Translated Source Translated source IP address when the NAT rule is applied.
    Translated Destination Translated destination IP address when the NAT rule is applied.
    Enabled Select this check box to enable your customized NAT rule. Direction can be both inbound or outbound.
    Comment Any comment you want to add pertaining to your NAT rule.
    Criteria Match: LAN interface, direction, source, destination

    Set: Translated source, translated destination

NAT Pools

You also have the option to configure a NAT pool. Complete the following steps to create a NAT pool:

  1. Select the Edit icon on the NAT tab. The NAT window opens.

  2. Select the NAT Pools icon. The NAT Pools window opens.

  3. Select Add.

  4. Select the columns in the table, starting with Name, to enter information about your Pool.

    Field Description
    Name Name of your pool.
    Direction Whether the traffic is outbound or inbound.
    Subnet IP address of the subnet.
    Translate Ports Enable source port address translation if the NAT pool is too small to accommodate multiple, flows simultaneously with 1:1 IP address translation.

Back to top

© Copyright 2023 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. Aruba Networks and the Aruba logo are registered trademarks of Aruba Networks, Inc. Third-party trademarks mentioned are the property of their respective owners. To view the end-user software agreement, go to Aruba EULA.