23-11
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter2 3 Configuring Network Address Translation
NAT Policies on Cisco IOS Routers
Navigation Path
(Device view) Select NAT from the Policy selector, then click the Dynamic Rules tab.
(Policy view) Select NAT (Router) > Translation Rules from the Policy Type selector. Select an
existing policy or create a new one, and then click the Dynamic Rules tab.
Related Topics
NAT Policies on Cisco IOS Routers, page23-5
NAT Page: Static Rules, page23-6
NAT Page: Timeouts, page 23-13
Standard Security Manager rules table topics:
Using Rules Tables, page12-7
Filtering Tables, page1-45
Table Columns and Column Heading Features, page1-46
NAT Dynamic Rule Dialog Box
Use the Add/Edit NAT Dynamic Rule dialog boxes to add or edit dynamic address translation rules.
Except for their titles, the two dialog boxes are identical.
Navigation Path
Go to the NAT Page: Dynamic Rules, page 23-10 tab; click the Add button beneath the table to add a
new rule, or select a rule in the table and click Edit to update that rule.
Related Topics
Creating Access Control List Objects, page 6-49
Understanding Interface Role Objects, page 6-67
Field Reference
Tab le 23 -3 NAT D yn am ic Rule Dialog Box
Element Description
Traffic Flow In the Access List field, enter or Select the name of the access control list
(ACL) object whose entries define the addresses requiring dynamic
translation.
Note Make sure that the specified ACL does not permit the translation of
Security Manager management traffic over any device address on
this router. Translating this traffic will cause a loss of
communication between the router and Security Manager.