Configure an internal user to access the Internet using a NAT address pool on the AR router

A Huawei AR router allows internal users to access external servers and the Internet using a NAT address pool. The configuration is as follows:
1. Assign IP addresses to interfaces on the router.
[Huawei] vlan 100
[Huawei-vlan100] quit
[Huawei] interface vlanif 100
[Huawei-Vlanif100] ip address 192.168.20.1 24
[Huawei-Vlanif100] quit
[Huawei] interface ethernet 2/0/0
[Huawei-Ethernet2/0/0] port link-type access
[Huawei-Ethernet2/0/0] port default vlan 100
[Huawei-Ethernet2/0/0] quit
[Huawei] interface gigabitethernet 3/0/0
[Huawei-GigabitEthernet3/0/0] ip address 202.169.10.1 24
[Huawei-GigabitEthernet3/0/0] quit
2. Configure a default route to ensure that the outbound interface has a reachable route to the remote end.
[Huawei] ip route-static 0.0.0.0 0.0.0.0 202.169.10.2
3. Configure outbound NAT in address pool mode.
[Huawei] nat address-group 1 202.169.10.100 202.169.10.200
[Huawei] acl 2000
[Huawei-acl-basic-2000] rule 5 permit source 192.168.20.0 0.0.0.255
[Huawei-acl-basic-2000] quit
[Huawei] interface gigabitethernet 3/0/0
[Huawei-GigabitEthernet3/0/0] nat outbound 2000 address-group 1 no-pat
[Huawei-GigabitEthernet3/0/0] quit

Scroll to top