Source NAT (many-to-many)
In many-to-many translations, a number of private addresses are mapped to a number of public addresses. This mapping provides a way of reducing the possibility of port exhaustions that are possible in a many-to-one scenario. For this reason, the mapping can provide more capacity for outbound translations. The following figure shows a large private address space (a /8 network prefix, here represented as three /16 subnets) mapped to a small range of external addresses.
To configure NAT in this way, perform the following steps in configuration mode.
Step | Command |
---|---|
Create SNAT rule 10. |
|
Apply this rule to packets coming from any host on the 10.0.0.0./8 network and egressing through the dp0p1p1 interface. |
|
Choose an address in the range 12.34.56.64 through 12.34.56.79 as the source address in outgoing packets. Note that the translation address should be an address defined on the outbound interface if it is part of the connected subnet on that interface. This ensures that the vRouter replies to ARP requests from remote devices for one of the translation addresses. |
|
Commit the change. |
|
Show the configuration. |
|