Got it
Huawei Enterprise Support Community
Community Forums Intelligent Video Surveillance
NAT Based on IP Address a...

NAT Based on IP Address and Port Translation

305 0 0 0 0
View the author 1#

NAT based on IP address and port translation belongs to many-to-one IP address translation, that is, multiple private IP addresses can be converted into one public IP address.

NAT based on IP address and port translation converts server IP addresses and ports at the same time to implement many-to-one IP address translation.

For NAT mapping, you can select internal server port numbers based on service scenarios. Table 1 describes the current port numbers that can be mapped. For detailed port number information, see the Communication Matrix.

Table 1 Port numbers that can be mapped

Internal Server Port

Description

Port Mapping Scenario and Supported Service Function

9900

Port for the CU to access the SMU through NSS.

If the C/S client and server are not in the same network (assume that the client is in the public network and the server is in the private network):

  • If the default RTSP protocol is used for data transmission between the client and server, you need to configure mapping for ports 9900, 9932, and 554.
  • If the RTSP OVER TLS protocol is used for data transmission between the client and server, you need to configure mapping for ports 9910, 9932, and 322. (After the RTSP OVER TLS protocol is enabled, data transmission reliability will be improved but transmission performance will deteriorate.)

The following functions are supported after you configure NAT mapping:

  • Browse live video on cameras and operate PTZ cameras through the C/S client.
  • Browse, play back, and download recorded video on the C/S client.

9910

Port for the CU to access the SMU through NSS TLS.

9932

Port for the OMU to listen on the SDK. The SDK is mainly used for querying alarms and reports and pushing alarms.

554

Media stream control protocol listening port.

322

Media stream control protocol listening port, RTSP OVER TLS standard protocol.

8481

Port for uploading and downloading electronic maps, downloading upgrade packages, and uploading snapshots taken on PUs on the C/S client.

If the C/S client and server are not in the same network (assume that the client is in the public network and the server is in the private network), this port needs to be mapped if functions related to the electronic map need to be used on the C/S client.

The internal server port numbers of the master and slave servers are different. Therefore, the ports to be mapped for the master and slave servers are different. Table 2 describes the details.

Table 2 Ports to be mapped for the master and slave servers

Server Work Mode

Port that the VCN Needs to Map

Mandatory or Optional (Mandatory Indicates that the Port Must Be Configured for the Live and Recorded Video Browse Function)

Master server

9900

Mandatory (when the default RTSP protocol is used for data transmission between the client and server).

9932

554

9910

Mandatory (when the RTSP OVER TLS protocol is used for data transmission between the client and server).

9932

322

8481

Optional. This port needs to be configured if functions related to the electronic map need to be used.

Slave server

554

Mandatory (when the default RTSP protocol is used for data transmission between the client and server).

322

Mandatory (when the RTSP OVER TLS protocol is used for data transmission between the client and server).

8481

Optional. This port needs to be configured if functions related to the electronic map need to be used.

Assume that the stack network is used. The client (10.10.10.200) is in the public network and needs to access the VCN on the private network. Figure 1 shows the NAT mapping.

Figure 1 NAT mapping
http://localhost:7890/pages/CEH0706J/03/CEH0706J/03/resources/en-us_image_0100927743.png

Table 3 describes the mapping between IP addresses and port numbers after NAT mapping.

Table 3 Mapping between IP addresses and port numbers

Public IP Address and NAT Port

Private IP Address and Server Port

Description

10.10.10.10 9900

192.168.10.10 9900

  • If the public IP address is an IP address mapped from the private server to the public network (for example, 10.10.10.10), you can log in to the C/S client on the public network through this IP address to access the VCN on the private network.
  • The NAT port is the port mapped from the server port to the firewall. The NAT port can be set as planned. The port number ranges from 1 to 65535. Here, the mapped ports in the preceding network diagram are used as examples.
  • The private IP address is the IP address of the private server.
  • The server ports are internal ports. NAT mapping needs to map ports in Table 2 to NAT ports.

10.10.10.10 9932

192.168.10.10 9932

10.10.10.10 554

192.168.10.10 554

10.10.10.10 8481

192.168.10.10 8481

10.10.10.10 1554

192.168.10.11 554

10.10.10.10 18481

192.168.10.11 8481

10.10.10.10 2554

192.168.10.12 554

10.10.10.10 28481

192.168.10.12 8481


Like (0) Dislike (0) Favorite(0) Share Report
Previous: Installing the UOA on a General Server
Next: NAT Based on IP Address Translation
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.