P312 Broadband Security Gateway
6-16 NAT
server and the other IGA is used by all. We want to map the FTP servers to the first two of our IGAs and
the other LAN traffic to the remaining IGA. We also want to map out third IGA to an inside web server and
mail server. We need to configure 4 rules, 2 bi-directional and 2 one directional as follows.
Rule 1. We map our first IGA to our first inside FTP server for FTP traffic in both directions (1: 1
mapping, giving both local and global IP addresses).
Rule 2. We map our second IGA to our second inside FTP server for FTP traffic in both directions (1: 1
mapping, giving both local and global IP addresses).
Rule 3. We map our other outgoing LAN traffic to IGA3 (Many : 1 mapping).
Rule 4. We also map our third IGA to our web server and mail server on the LAN. Type Server
allows us to specify multiple servers, of different types, to other machines behind NAT on the
LAN.
Our situation looks somewhat like this:
Figure 6-16 NAT - Example 3
Step 1. In this case we need to configure Address Mapping Set 1 from Menu 15.1 - Address Mapping
Sets. Therefore we must choose the Full Feature option from the Network Address
Translation field (in Menu 4 or Menu 11.3) in Figure 6-17.
Step 2. Then enter 15 from the Main Menu.
Step 3. Enter 1 to configure the Address Mapping Sets.
Step 4. Choose 1 to begin configuring this new set. Enter a Set Name, choose the Edit Action and then
select 1 from Select Rule field. Press [ENTER] to confirm.