Nokia M1112 manual Network Address Port Translation

Page 19

M1112 Administrator Manual

self-learning bridge supporting up to 1024 MAC addresses. Bridging is done between the Ethernet 10Base-T interface and each ATM VCC interface. Optionally, the bridging between the VCCs can be disabled.

2.2.4Network Address Port Translation

M1112 supports Network Address Port Translation (NAPT) for TCP/IP, UDP/IP and ICMP/IP protocols. When NAPT is used, a single IP address is allocated to a VCC which leads to the public IP network. The Ethernet subnet has private IP addressing and is not visible to the VCC. NAPT translates the IP source address and source port number dynamically to the VCC IP address and port number. Similarly, packets coming from the VCC are mapped back to the original destination addresses. NAPT allows up to hundreds of hosts to share a single VCC IP address to the public network. The principle of Network Address Port Translation is presented in Figure 2-4.

Home network (LAN)				Internet (WAN)
src:192.168.1.112:1228	192.168.1.254		195.112.12.161	src:195.112.12.161:50001
dst:194.112.11.111:80		NAPT router		dst:194.112.11.111:80
		NAPT router
src:194.112.11.111:80				src:194.112.11.111:80
dst:192.168.1.112:1228				dst:195.112.12.161:50001

Figure 2-4Principle of Network Address Port Translation

NAPT may restrict the operation of some IP applications. NAPT also operates as a simple IP firewall because translation is only allowed when the first packet is transmitted from the LAN. This means that the NAPT table entry is created only when a packet is sent from the home network to the Internet. With server support capability, the user can add static entries to the NAPT table allowing the translation always in both directions. This capability is used to add servers (HTTP, NNTP, and FTP), which are visible to the public IP network via the VCC, on the LAN subnet.

NAPT supports most IP-based protocols. Because NAPT operates on the IP and transport layer, the application that includes IP address and port within the payload will not work properly through NAPT. In many cases, these applications can be passed through the NAPT using

2-8

E Copyright Nokia Networks Oy

C33907001SE_00

Image 19

Contents Nokia M1112 M1112 M1112 Administrator Manual Document Date Comment Document HistoryM1112 Administrator Manual Contents Chapter Interfaces and indicator lights Appendix a Technical specifications Viii Nokia M1112 Chapter Introduction to Nokia M1112M1112 Administrator Manual Applications Internet access1High-speed Internet access RAN L2TP Remote workLAN interconnection FeaturesInterfaces Route/tunnel IP only Route/tunnel IP, bridge all other including IP LAN interfaceBridging Internal host/gateway interfaceData VCC operation RoutingNetwork Address Port Translation ATM and Adsl Dynamic Host Configuration ProtocolPoint-to-Point Tunneling Protocol Pptp Point-to-Point Protocol over Ethernet PPPoE Weighted Fair Queueing Class of ServicePayload encapsulations Dedicated management channel Management6Dedicated management channel M1112 Administrator Manual Interfaces Chapter Interfaces and indicator lightsEthernet Signal Direction MDI signalEthernet interface Adsl interfaceSignal Command line interfaceSignal Direction MDI signal M5112-ter Minal 5M1112 front panel indicators Indicator lightsOff Hardware malfunction during startup M1112 Administrator Manual M1112 default settings Chapter Installing Nokia M1112255.255.255.0 Config mode level Parameter SettingM1112 192.168.1.1Step-by-step installation procedure Managing M1112 for instructions on how to configure M1112 Operational examples Chapter Managing M1112Routing/tunneling IP only Block diagramRouting/tunneling IP, bridging other protocols Routing/tunneling IP, bridging all protocols including IP Configuring Dhcp and DNS Typical configuration tasksBridging only Configuring static and dynamic routing File system and downloading new firmware using Tftp Downloading configuration or application from monitor Use CLI to issueBrowser management Opening a connection Main 3Service Providers page with PPP configuration Service Providers pages4Service Providers page with Pptp configuration Local ports Local Network pagesM1112 Administrator Manual 6Local Network Dhcp Napt 8Local Network Routing Statistics 10 Restart RestartSave Config Command line interface CLISetting Value M1112 Administrator Manual Command Show diagnostic log Main mode commandsCommand Show Ethernet interface status Command Show DSL line statusCommand Show bridge interface status Command Show ATM statusManaging M1112 Command Show bridging table Command Show bridging statisticsCommand Show Pptp information Command Show IP interfaces Command Show Address Resolution Protocol ARP tableCommand Show IP cache table and statistics Command Show IP statisticsVbridge Command Show IP routing tableCommand Show User Datagram Protocol statistics Command Show Internet Control Message Protocol statisticsCommand Show Routing Information Protocol statistics Command Show Transmission Control statisticsCommand Show Snmp statistics VCC3 Command Show Domain Name Server entry table and statis Tics Command Show M1112 information Command Show running configuration Command Show default configuration Command Show startup configurationCommand Show debug status Command Show configuration fileCommand Ping Command Switch off debug Command ATMpingCommand Copy file Command Show contents of file directoryCommand Delete file Command Rename fileCommand Download new firmware Command Save log to file Command Execute a command batchCommand Save log to a default file Command Restore configuration Command Save configuration to fileCommand Clear counters Command Logout Command Reset subsystemCommand Fast restart M1112 Command Return to root level Configuration mode commandsCommand Restart M1112 Command Switch to configuration modeCommand Show current running configuration Root level commandsCommand Assign hostname System level commandsCommand Set configuration session timeout Command Assign new password Password level commandCommand Switch on/off bridging Ethernet level commandsCommand Switch on/off IP function in Ethernet interface M1112conf-eth#ip rip-receive Command Activate ATM channel VCC ATM channel commandsCommand Set PPP username Command Switch on/off PPP authenticationCommand Set PPP password Command Switch on/off RIP send function on ATM channel Command Switch on/off IP function on ATM channelCommand Enable Network Address Port Translation Command Switch on/off RIP receive function on ATM channelCommand Disable/enable management through the ATM chan Nel Command Set server support entryCommand Disable/enable management through the vbridge Vbridge commandsCommand Switch on/off IP function in vbridge Command Switch on/off RIP receive function in vbridgeCommand Switch on/off VCC-to-VCC bridging Dedicated management channel commandsCommand Activate dedicated management channel Command Set PPP packet size Common commandsCommand Set max-config parameter value Command Set PPP restart time parameterCommand Set max-terminate parameter value Command Switch on/off IP cache Command Set max-failure parameter valueCommand Add/delete IP route Command Switch on/off dynamic host configuration protocol Command Define and activate host acces listCommand Set DNS address for Dhcp clients Command Set Dhcp address rangeCommand Set Dhcp pool domain name Command Set Dhcp server lease timeCommand Set Domain name server address Command Switch on/off weighted fair queueing M1112 Administrator Manual Routing FeaturesATM over Adsl Ethernet interfaceManagement through payload Command line interface CLI for local managementIndicator lights Dedicated ATM management channelMechanical construction Mechanical construction and power supplyAmbient conditions, EMC and safety Ambient conditionsSafety Intergrated services digital network Asynchronous transfer modeCommand line interface Digital Subscriber Line Access MultiplexerTerms 10Base-T Encapsulation Multiplexer Web browser Glossary-6