Whether the AR router can simultaneously do the NAT translation on the source IP and destination IP ?

0

Yes, AR router supports to do NAT translation on both the source IP and the destination IP.

Other related questions:
Can the AR router translate source and destination IP addresses simultaneously using NAT
The AR router can use NAT to translate source and destination IP addresses simultaneously.

Whether the NAT policy of the USG2000 can replace the source IP address and destination IP address simultaneously
The bidirectional NAT function of the USG2000 can bidirectionally translate the destination IP address and source IP address simultaneously.

Can AR router send the NAT translation table to the log server?
The configuration of NAT Elog does not need to enable firewall function, configuration is as follows: Nat log-format eLog Firewall log session enable Firewall log session NAT enable Info-center source channel 2 log level FW-DEBUG notification Then is the normal configuration of info-center. Refer to the product manual configuration: configure NAT log output

Explain the nat overlap-address command on the AR router
The nat overlap-address command configures the mapping between an overlapping address pool and a temporary address pool. When IP addresses of internal and external hosts overlap, the mapping between the overlapping address pool and the temporary address pool needs to be configured. After the mapping is configured, the overlapping address is translated into a unique temporary address to ensure correct packet forwarding. Outbound NAT needs to be configured to implement bidirectional NAT.

Whether the source address specified in the security policy is the translated address when the source NAT policy is configured
The source address specified in the security policy is the address before NAT when the source NAT policy is configured. When the firewall translates an address in a packet, it searches for the interzone security policy. The firewall translates only the address that passes the security policy check and matches the conditions defined in the interzone policy. Therefore, the source address specified in the interzone security policy is the address before NAT, that is, the private IP address.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top