FAQ-How to Translate a Public Network Address into Infinite Private Network Addresses While Breaking Through the Restriction of 65,535 Ports

Publication Date:  2015-07-01 Views:  180 Downloads:  0
Issue Description
How to Translate a Public Network Address into Infinite Private Network Addresses While Breaking Through the Restriction of 65,535 Ports?
Solution
The firewall creates and searches the session table by quintuple (including the source port, source IP address, destination IP address, destination port, and protocol number.) Therefore, the firewall can search correct session entries to forward packets only if the destination IP address or port differs (even if there are identical combinations of the source IP address and source port after NAT). When NAT outbound is configured on the firewall, IP addresses or ports after NAT may be identical for different traffic flows.

END