Brocade Communications Systems ServerIron ADX 12.4.00 Service Manual Page 139
- Page / 149
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
ServerIron ADX NAT64 Configuration Guide 127
53-1002444-02
IP NAT redundancy
7
DRAFT: BROCADE CONFIDENTIAL
ServerIronADX(config)# vlan 100
ServerIronADX(config-vlan-100)# untagged ethernet 1/1
ServerIronADX(config-vlan-100)# router-interface ve 1
ServerIronADX(config-vlan-100)# exit
ServerIronADX(config)# vlan 200
ServerIronADX(config-vlan-200)# untagged ethernet 1/2
ServerIronADX(config-vlan-200)# router-interface ve 2
ServerIronADX(config-vlan-200)# exit
ServerIronADX-A(config)# interface ve 1
ServerIronADX-A(config-ve-1)# 10.10.20.2 255.255.255.0
ServerIronADX-A(config-ve-1)# ip nat outside
ServerIronADX-A(config-ve-1)# exit
ServerIronADX-A(config)# interface ve 2
ServerIronADX-A(config-ve-2)# 10.10.10.2 255.255.255.0
ServerIronADX-A(config-ve-2)# ip nat inside
ServerIronADX-A(config-ve-2)# exit
ServerIronADX-B(config)# interface ve 1
ServerIronADX-B(config-ve-1)# 10.10.20.4 255.255.255.0
ServerIronADX-A(config-ve-1)# ip nat outside
ServerIronADX-B(config-ve-1)# exit
ServerIronADX-B(config)# interface ve 2
ServerIronADX-B(config-ve-2)# 10.10.10.4 255.255.255.0
ServerIronADX-A(config-ve-2)# ip nat inside
ServerIronADX-B(config-ve-2)# exit
4. Configure a standard or extended ACL identifying each private address range for which you
wish to provide NAT:
ServerIronADX(config)# access-list 10 permit 10.10.1.0 0.0.0.255
5. Configure a dynamic NAT pool on each ServerIron ADX, and assign device ownership to the NAT
pool. In this example, ServerIron ADX A is assigned as the NAT pool owner, and therefore takes
the higher priority value:
ServerIronADX-A(config)# ip nat pool P1 10.10.20.21 10.10.20.40 prefix-len 24
ServerIronADX-A(config)# ip nat pool P1 port-pool-range 2
ServerIronADX-B(config)# ip nat pool P1 10.10.20.21 10.10.20.40 prefix-len 24
ServerIronADX-B(config)# ip nat pool P1 port-pool-range 1
6. Tie the inside source ACL to the dynamic NAT pool and enable PAT (overload)
ServerIronADX(config)# ip nat inside source list 10 pool P1 overload
7. Configure the VRRP-E parameters. The IP address configured with the ip-address command is
the address that will be backed up by VRRP-E. The track-port commands enable tracking on
the interfaces on the other side of the ServerIron ADX that complete the link for the VRID. For
example, traffic that is addressed to VRID 1 enters the ServerIron ADX through VE interface 1
and leaves the ServerIron ADX through VE interface 2. Under normal circumstances, if VE
interface 2 goes down, VRID 1 remains active.
When you track interfaces for a VRID, if the state of one of the tracked interfaces changes, the
ServerIron ADX associates the change with the VRID interface. For example, if virtual routing
interface 2 goes down, the ServerIron ADX associates this state change with VRID 1 and
causes VRRP-E to fail over the VRID to the other ServerIron ADX. The ServerIron ADX on which
you configure the higher VRRP-E backup priority becomes the default master for the VRID,
while other ServerIron ADX becomes the backup.
In this example, ServerIron ADX A is configured as the default master for the HA setup.
- ServerIron ADX 1
- Document History 2
- Contents 3
- About This Document 9
- Command syntax conventions 10
- Notice to the reader 11
- Related publications 11
- Getting technical help 11
- NAT64 and NAT46 Overview 13
- Stateless NAT46 translation 14
- Protocol support 15
- NAT64 fragmentation support 17
- References 18
- Stateful NAT64 Configuration 19
- Operation of stateful NAT64 20
- 53-1002444-02 23
- Enabling connection logging 28
- Displaying NAT64 information 31
- Displaying NAT64 translations 32
- Displaying NAT64 statistics 33
- Displaying NAT64 resources 37
- Stateless NAT64 Configuration 39
- Operation of stateless NAT64 40
- High availability for NAT64 52
- Clearing NAT64 information 53
- Stateless NAT46 Configuration 55
- Operation of stateless NAT46 56
- High availability for NAT46 67
- Displaying NAT46 information 68
- Clearing NAT46 information 69
- Access Control Lists 71
- Rule-based ACLs 72
- Default ACL action 74
- ACL IDs and entries 74
- Configuring rule-based ACLs 77
- Modifying rule-based ACLs 85
- Reordering ACLs 86
- Applying ACLs to interfaces 87
- Adding comments to named ACLs 89
- ACL logging 94
- Displaying ACL log entries 95
- Clearing the ACL statistics 97
- Throttling the fragment rate 98
- DRAFT: BROCADE CONFIDENTIAL 100
- Enabling strict TCP mode 101
- Enabling strict UDP mode 102
- ACLs and ICMP 103
- Numbered ACLs 104
- Named ACLs 105
- • Enable the strict TCP mode 107
- IPv6 Access Control Lists 109
- Configuration notes 110
- Processing of IPv6 ACLs 110
- Configuring IPv6 ACLs 111
- IPv6 ACL syntax 114
- Syntax Description 116
- Displaying IPv6 ACLs 118
- Logging IPv6 ACLs 119
- Network Address Translation 121
- Configuring NAT 122
- Configuring static NAT 123
- Configuring dynamic NAT 123
- Enabling IP NAT 124
- NAT configuration examples 125
- IP NAT with VIP overlap 129
- Translation timeouts 130
- Stateless static IP NAT 132
- IP NAT redundancy 133
- Displaying NAT information 144
- Displaying NAT translation 147
- Displaying VRRPE information 148
Related products and manuals for Network switches Brocade Communications Systems ServerIron ADX 12.4.00
(16 pages)
(82 pages)© 2020, manymanuals.com. All rights reserved. | 0.952 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals