NAT Rules and Pools
Configuration > Networking > NAT
You can add NAT rules by completing all the values in the table shown below. Each NAT rule has a directional field or value. Outbound rules are applied to the traffic flows initiated from the LAN, destined to the SD-WAN fabric. Inbound rules are applied to the traffic flows initiated from the SD-WAN fabric destined to the LAN. Return traffic for a given flow does not require an additional rule. The destination IP address must be configured for each rule.
NOTE: You must disable advertisements of local, static routes on the LAN side at the site so the routes are completely unique. Additionally, you must configure announce-only static routes for your NAT pools and advertise them to the SD-WAN fabric by allowing those routes in your “Redistribute routes to SD-WAN fabric” route map.
Complete the following steps to add a rule to your NAT:
-
Select Add Rule.
-
Complete the following values in the table by selecting any of the columns.
Field Description Priority Order in which the rules are executed; the lower the priority, the higher the chance your NAT rule will be applied. LAN Interface Name of the LAN interface the NAT rule is using. This is configurable for an outbound NAT rule only. Segment Name of the segment being used. Direction Select the direction the traffic is going:
Outbound (LAN to Fabric)
Inbound (Fabric to LAN)Protocol Type of protocol being used for each NAT. Source Original source IP address of the IP packet. Destination Address of the LAN/WAN interface where the traffic is going to. Translated Source Translated source IP address when the NAT rule is applied. Translated Destination Translated destination IP address when the NAT rule is applied. Enabled Select this check box to enable your customized NAT rule. Direction can be both inbound or outbound. Comment Any comment you want to add pertaining to your NAT rule. Criteria Match: LAN interface, direction, source, destination
Set: Translated source, translated destination
NAT Pools
You also have the option to configure a NAT pool. Complete the following steps to create a NAT pool:
-
Select the Edit icon on the NAT tab. The NAT window opens.
-
Select the NAT Pools icon. The NAT Pools window opens.
-
Select Add.
-
Select the columns in the table, starting with Name, to enter information about your Pool.
Field Description Name Name of your pool. Direction Whether the traffic is outbound or inbound. Subnet IP address of the subnet. Translate Ports Enable source port address translation if the NAT pool is too small to accommodate multiple, flows simultaneously with 1:1 IP address translation.