SonicWALL E6500 manual Configuring NAT Policies

Page 48

6.Click OK.

Configuring NAT Policies

NAT policies allow you to control Network Address Translation based on matching combinations of Source IP address, Destination IP address and Destination Services. Policy-based NAT allows you to deploy different types of NAT simultaneously. The following NAT configurations are available in SonicOS Enhanced:

Many-to-One NAT Policy

Many-to-Many NAT Policy

One-to-One NAT Policy for Outbound Traffic

One-to-One NAT Policy for Inbound Traffic (Reflexive)

One-to-Many NAT Load Balancing

Inbound Port Address Translation via One-to-One NAT Policy

Inbound Port Address Translation via WAN IP Address

This section describes how to configure a One-to-One NAT policy. One-to-One is the most common NAT policy used to route traffic to an internal server, such as a Web Server. Most of the time, this means that incoming requests from external IPs are translated from the IP address of the SonicWALL security appliance WAN port to the IP address of the internal web server.

For other NAT configurations, see the SonicOS Enhanced Administrator’s Guide.

An example configuration illustrates the use of the fields in the Add NAT Policy procedure. To add a One-to-One NAT policy that allows all Internet traffic to be routed through a public IP address, two policies are needed: one for the outbound traffic, and one for the inbound traffic. To add both parts of a One-to- One NAT policy, perform the following steps:

1.Navigate to the Network > NAT Policies page. Click Add. The Add NAT Policy dialog box displays.

2.For Original Source, select Any.

3.For Translated Source, select Original.

4.For Original Destination, select X0 IP.

5.For Translated Destination, select Create new address object and create a new address object using WAN for Zone Assignment and Host for Type.

6.For Original Service, select HTTP.

7.For Translated Service, select Original.

8.For Inbound Interface, select X0.

9.For Outbound Interface, select Any.

10.For Comment, enter a short description.

11.Select the Enable NAT Policy checkbox.

12.Select the Create a reflexive policy checkbox if you want a matching NAT Policy to be automatically created in the opposite direction. This will create the outbound as well as the inbound policies.

Click OK

SonicWALL NSA E6500 Getting Started Guide Page 47

Page 47 Page 49
Image 48
Page 47 Page 49
Contents NSA E6500 Getting Started Guide Document Contents SonicWALL NSA E6500Front SonicWALL NSA E6500Pre-Configuration Tasks This SectionCheck Package Contents Obtain Configuration Information Administrator InformationObtain Internet Service Provider ISP Information Registration InformationFront Panel LCD ScreenBack Panel Front Bezel Control Features LCD Control ButtonsMain Menu StatusConfigure Configuration Options RestartSafeMode Screen-SaverFront Bezel Configuration Example LAN IP ConfigurationRegistering Your Appliance Before You Register Registering and Licensing Your Appliance on mysonicwall.com Product RegistrationLicensing Security Services and Software Gateway ServicesSonicWALL NSA E6500 Getting Started Guide Registering a Second Appliance as a Backup Registration Next StepsDeployment Scenarios ABC Selecting a Deployment ScenarioScenario a NAT/Route Mode Gateway Scenario B State Sync Pair in NAT/Route Mode Scenario C L2 Bridge Mode Initial Setup Connecting the WAN PortSystem Requirements Connecting the LAN Port Applying PowerAccessing the Management Interface Accessing the Setup WizardConnecting to Your Network Testing Your ConnectionActivating Licenses in SonicOS Saving a Backup Copy of Your Preferences Upgrading Firmware on Your SonicWALLObtaining the Latest Firmware Using SafeMode to Upgrade Firmware Upgrading the FirmwareAdditional Deployment Configuring a State Sync Pair in NAT/Route Mode Initial High Availability SetupConfiguring High Availability Configuring Advanced HA Settings34 Configuring a State Sync Pair in NAT/Route Mode Synchronizing Settings Adjusting High Availability Settings Synchronizing FirmwareHA License Configuration Overview Your Appliance on mysonicwall.comAssociating Pre-Registered Appliances Configuring L2 Bridge Mode Configuring the Primary Bridge InterfaceConnection Overview Configuring the Secondary Bridge Interface IP Assignment drop-down, select Layer 2 Bridged ModeAdditional Deployment Configuration Creating Network Access Rules An Introduction to Zones and InterfacesSonicWALL NSA E6500 Getting Started Guide 44 Creating Network Access Rules Creating a NAT Policy Configuring Address Objects Configuring NAT Policies Enabling Security Services in SonicOS Applying Security Services to ZonesGateway Anti-Virus Intrusion Prevention Anti-Spyware Troubleshooting Diagnostic Tools Using Packet CaptureUsing Ping Using the Active Connections Monitor Using Log View Deployment Configuration Reference Checklist For this Task See this Chapter54 Deployment Configuration Reference Checklist Support and Training Options Customer Support Knowledge PortalUser Forums Training Related Documentation Dynamic Tooltips SonicWALL Live Product DemosSonicWALL NSA E6500 Getting Started Guide 62 SonicWALL Live Product Demos Rack Mounting Instructions Rack Mounting Instructions SSEMBLEMTHEL3LIDET2AIL  &ASTEN TWOSIDEDISCREWSWTOOTHETRAIL SSEMBLEMNNERE2AILITOO#HASSIS NSERTT#HASSISATOO&RAME  3LIDEIINNER CHANNELEINTOORAILS 68 Rack Mounting Instructions Product Safety and Regulatory Information Safety and Regulatory Information Rack Mounting the SonicWALLHinweis zur Lithiumbatterie FCC Part 15 Class a Notice Copyright Notice TrademarksPage SonicWALL NSA E6500 Getting Started Guide Page Protection AT the Speed of Business
Top Page Image Contents