No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

NE40E V800R010C00 Feature Description - NAT and IPv6 Transition 01

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
NAT Static Source Tracing Algorithm

NAT Static Source Tracing Algorithm

Principles

The static source tracing algorithm provides a formula with the input of a private IP address range, a public IP address range, a port range size, and a port range and the output of the mapping between each private IP address and a pair of a public IP address range and a port range. The algorithm used in NAT translation defines mappings between private IP addresses and a pair of a public IP address range and a port range. A network element can use the algorithm to perform NAT user tracing as long as the network element obtains the NAT source tracing parameters the same as those configured on a NAT device, without receiving source tracing logs sent by the NAT device.

A network element can perform NAT user tracing through this algorithm as long as the network element obtains source tracing parameters the same as those configured on a NAT device.

In Figure 3-24, private addresses are mapped to the public IP address range and port range. Public IP address source tracing enables the NAT device to search for a private IP address mapped to the public IP address and port number.

Figure 3-24  Static source tracing algorithm implementation

Deployment

In Figure 3-25 and Figure 3-26, the static source tracing algorithm is applicable to centralized and distributed NAT444 scenarios. The static source tracing algorithm is configured on a NAT device, and the NAT device performs NAT translation based on the static source tracing algorithm.

In Figure 3-25, the static source tracing algorithm is used in centralized NAT444. In this scenario, users are not allowed to get online.

Figure 3-25  Centralized NAT444 deployment

In Figure 3-26, the static source tracing algorithm is used in distributed NAT444. In this scenario, users can get online.

Figure 3-26  Distributed NAT444 deployment

Benefits

Different from NAT444 source tracing, the static source tracing algorithm used on a NAT device does not send source tracing logs to the log server. Source tracing is complete by searching for the mapping between private and public network information stored in the static source tracing algorithm file on a source tracing device (for example, a log server).

With the static source tracing algorithm, a small number of public IP addresses can be allocated to a large number of private IP addresses, and the mapping between private and public IP addresses as well as the port range remains unchanged, which facilitates maintenance.

Download
Updated: 2018-07-04

Document ID: EDOC1100027155

Views: 22105

Downloads: 72

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next