To have a better experience, please upgrade your IE browser.upgrade
Questo sito utilizza cookie di profilazione (propri e di terze parti) per ottimizzare la tua esperienza online e per inviarti pubblicità in linea con le tue preferenze. Continuando a utilizzare questo sito senza modificare le tue preferenze acconsenti all’uso dei cookie. Se vuoi saperne di più o negare il consenso a tutti o ad alcuni cookie clicca qui>
The website that you are visiting also provides Arabian language. Do you wish to switch language version?
يوفر موقع الويب الذي تزوره المحتوى باللغة العربية أيضًا. هل ترغب في تبديل إصدار اللغة؟
The website that you are visiting also provides Russia language Do you wish to switch language version?
Данный сайт есть в английской версии. Желаете ли Вы перейти на английскую версию?
Smart Modular Data Center
Prefabricated Modular Data Center
Precision Air Conditioners
Data Center Management
Handsets and Terminals
Rapid Deployment System
Platform or Infrastructure
Core Network Devices
Radio Access Network Devices
Firewall and Application Security Gateway
DDoS Protection Systems
Anti-APT Based on Big Data Analysis
Multi-service Control Gateways
Multi-Service Transport Platforms
AR Series IoT Gateways
AR Series Access Routers
Hybrid Flash Storage
Integrated Video Site Solution
Enterprise Telecom Energy
Smart Site Management System
Multi-Service Transmission Platforms
HD Network Cameras
Video Cloud Nodes
Video Content Management
Indoor Access Points
Outdoor Access Points
Scenario-specific product series
IT Infrastructure Storage Solutions
Data Center Network
Data Center Energy
Enterprise Communications Solution
Contact Center Solution
Advisory and Implementation
Support and Optimization
Training and Certification
Explore Technology Services
National Research and Education Network
Education Cloud Data Center
Multi-Channel HD Telemedicine Solution
Over The Top/Multi-Tenant Data Center (OTT/MTDC)
Internet Exchange Point (IXP)
Internet Access Provider (IAP)
Design & Simulation
Planning & Analytics
Oil & Gas IoT
HPC & Operations Management
Visualized Emergency Communication
Digital Urban Rail
Retail Cloud Platform
Intelligent Operations Center
Power Transmission Communications Network
FusionSolar Smart PV
Power Distribution Automation Communications
Advanced Metering Infrastructure
Buy from Huawei
If you need to get information about your project, please submit your information and we will contact you within one working day.
Consult online customer service regarding products/solutions you are interested in.
If your company has signed an eDeal contract with Huawei, please buy your required product/solution via the link below.
Buy from resellers
Search for a nearby reseller and get direct contact information.
Find a Partner
Become a Partner
Alliance and solution Partner
Huawei Authorized Learning Partner
Huawei Authorized Information and Network Academy
Setting up NAT port translation so that beginning an SSH session from a Host on internet to a particular port to the AR160’s outside interface translates to a particular port/IP combination on the AR160s inside interface.
For example initiating a SSH session from a host in internet on port 64444 of AR external interface to translate to port 22 and IP address of CE switch internal
IP address, using the following config on int GE0/0/4:
ip address 10.1.139.6 255.255.255.0
nat server protocol tcp global current-interface 64444 inside 192.168.200.131 22
This seems to work for normal devices, but there is a problem in using this method to access the internal switches Meth interfaces. Due to the fact that the NAT statement
above only changes the destination of the packets, not the source, so the source remains the external IP address of Host. The switches doesn’t have a route back to external IP address, so drops the traffic.
One possibility is creating a separate routing table for the Meth interface using a VPN, but this is not desired because of the large number of internal switches that
need to be accessed.
The need is to change on the AR160 router that would change the source ip/port of the incoming packets.
In order for switches Meth interfaces to return the packets to Host in internet there is the need to create source NAT to change the Public IP in Private IP from the same subnet with the switch.
Configure NAT outbound on the internal AR interface so that when packets leave the router, the source is changed:
acl number 3000
rule 5 permit ip source [Public IP of Host]
nat outbound 3000 //Configure outbound NAT to translate the source IP address used when external users access the internal
network and ensure that the internal network does not need to import routes of the external network.