3D Connexionメーカー17621の使用説明書/サービス説明書
ページ先へ移動 of 28
Compatible Systems Setup Guides: Network Address Translation Configuration Guide Document ID: 17621 Contents − Network Address Translation Configuration Guide IMPORTANT DISCLAIMERS EXPLANATION OF NA.
EXTERNAL NAT PORT INTERNAL NAT PORT [ IP < Secton ID > ] configure commands and example keywords for Example Three EXTER NAL NAT PORT INTERNAL NAT PORT NAT PASSTHRU RANGE FINAL NOTES IMPORTANT DISCLAIMERS Not all Compatible Systems devices have Network Address Translation ability.
single IP address supplied by an ISP or the company System Administrator, rather than an IP address for each workstation −− a savings of nine valuable IP addresses. Local Network Security Another useful feature of NAT is its ability to act as a "firewall.
Example Three: Very similar to Example Two , except that the External NAT Port, Internal NAT Port, and the port for the NAT PassThru Range are all located on the same physical port , by using sub−interfaces on this physical port.
CONFIGURATION SECTION. In Example One this is the Ethernet 0 IP interface. The IP Interface which is communicating with the External Network or Internet must be the only interface which has NatMap = On. It is important that one, and only one, IP interface on a NAT Router have its NatMap variable set to On.
On inbound packets, in response, all External NAT destination IP addresses {198.41.9.219} are changed to Internal NAT IP addresses {10.5.3.10}. The NAT Session, which was created by the outbound IP packet from the NAT Network, is what allows this translation to take place.
because other descriptions of NAT on the Internet have not explicitly said this and initially caused confusion. CONDITION 1: A NAT SESSION INITIATED FROM THE OUTSIDE Let's make one change to the network of Example One − the NT workstation is now a Web server.
allows the NAT Router to make the NAT Web server appear to be at 198.41.9.194. This NAT Map Database entry allows the NAT software to create a NAT Session when the site at 128.138.240.11 initiates an IP session to the NAT External Range IP address:port combination of 198.
(*) NOTES: Private IP Addresses for the Frane Relay connection across the "WAN Cloud". (**) NOTES: All of the machines in the NAT network must address their IP packets to the Internal Interface of the MR 2220 "NAT Router" (Ethernet 1).
Systems NAT functionality: The NAT External Range in the NAT Router does not have to be directly related to the IP address of the External NAT Port. However, the NAT External Range does have to be a "global" IP address and it must be "routable.
(*) NOTES: IP sub−interface ports Ethernet 0.1 and 0.2 are shown as seperate connections in FIGURE 3 for clarity, but they really connect through the physical connection of Ethernet 0 and the "External Ethernet Hub" to the MR 1250i Router at IP address 198.
CONCLUDING EXPLANATION REMARKS If these example explanations have not made the functionality of Network Address Translation a little clearer, please see one of the Web sites listed at the beginning of the document for more explanation.
TCP FIN timeout period (sec.): 180 Entered Internal ranges(s): 10.5.3.0/27 Entered External ranges(s): 198.41.9.219 198.41.9.195 198.41.9.194 Entered Pass Thru ranges(s): 198.
TCP SYN timeout period (sec.): 180 The router will remove an active NAT Session for TCP after 180 seconds (three minutes) if a SYN TCP packet has not been answered. TCP FIN timeout period (sec.): 180 The router will remove an active NAT Session for TCP after 180 seconds (three minutes) if a FIN TCP packet has not been answered.
address 10.5.3.20 and sent to the Internal NAT Network by the router. Line 1 shows a different option for the one−to−one address translation pairs. It lists IP address:port combinations such that a site on the Internet could access a Web server on the workstation at the NAT Network address of 10.
10.5.3.20:0 −>198.41.9.194:0 198.41.9.215:0 ICMP 236/922 105.00 104.00 10.5.3.10:29841 −>198.41.9.219:29841 198.41.9.30:53 UDP 255/976 33.93 33.50 10.5.3.10:1899 −>198.41.9.219:1899 198.41.9.12:80 TCP 983/680 25.67 0.16 10.5.3.10:1900 −>198.
Sessions Timed Out is the number of NAT Sessions removed from the NAT hash database as a result of a time limit being exceeded. This can occur in one of three ways: a SYN packet in a session does not .
| +−−−−−−−−− 10.5.3.20(#)(%) 198.41.9.192 −−−−−−−−−+−−−−−−−−− 198.41.9.194(@)(%) (255.255.255.224) | +−−−−−−−−− 198.41.9.195($)(@)(%)() | +−−−−−−−−− 198.41.9.205(*) | +−−−−−−−−− 198.
<Keyword> = <Value> To find a list of valid keywords and additional help enter "?" [ NAT Global ]# ? Valid keywords for the 'NAT Global' section: UDPTimeout UDP Timeout.
(defined next). The NAT Router and the LANs and or WANs to which it is connected must be configured so that IP packets with addresses in the InternalRange enter the NAT Router through the Internal NAT Port. This variable is parsed, and can be entered, using the same syntaxes used for the IP addresses in the IP filters with one important addition.
be able to communicate with/configure the NAT Router via the Command Line interface. Enabled Overall NAT capability in Router After the InternalRange and ExternalRange, Enabled is probably the most important keyword in this section. It allows the router to perform Network Address Translations between the internal and External Networks.
Nat_2220> sh nat map [ NAT Map Database ] Total Number of Entries in NAT Map Database: 2 −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−− Internal External LineNo.
Ethernet 0 is the External NAT Port, Ethernet 1 is the Internal NAT Port. The IP protocol on the Bridge, Wan 0, and Wan 1 has been disabled in this example. Note: Again, the NAT software is currently designed and has only been tested with one External IP Port on a router.
INTERNAL NAT PORT, EXAMPLE 1 The configuration of the Internal NAT Port and its relation to the [NAT Global] section is shown next. Nat_2220> config ip ethernet 1 Enter Password: Configure paramete.
NAT functionality enabled (On/Off): On NAT Response to external ICMPs (On/Off): On Communicate w/ Router through IP Ports (On/Off): On Configured Ports: Ether0 UDP timeout period (sec.): 300 TCP timeout period (sec.): 86400 TCP SYN timeout period (sec.
<Keyword> = <Value> To find a list of valid keywords and additional help enter "?" [ IP Ethernet 0 ] # list [ IP Ethernet 0 ] Mode = Routed RIPVersion = V2 SubnetMask = 255.255.255.224 IPAddress = 198.41.9.197 NatMap = On The most important keyword here is NatMap.
and in [ IP Ethernet 0.1 ]: SubnetMask = 255.255.0.0 IPAddress = 10.5.0.1 Notes: All workstations on the LAN directly connected to the Internal NAT Port must have this IP Port's address (10.5.0.1, in this example) set as their Gateway route in their IP applications.
All contents copyright © 1992−−2001 Cisco Systems Inc. Important Notices and Privacy Statement. Updated: Aug 19, 2004 Document ID: 17621.
デバイス3D Connexion 17621の購入後に(又は購入する前であっても)重要なポイントは、説明書をよく読むことです。その単純な理由はいくつかあります:
3D Connexion 17621をまだ購入していないなら、この製品の基本情報を理解する良い機会です。まずは上にある説明書の最初のページをご覧ください。そこには3D Connexion 17621の技術情報の概要が記載されているはずです。デバイスがあなたのニーズを満たすかどうかは、ここで確認しましょう。3D Connexion 17621の取扱説明書の次のページをよく読むことにより、製品の全機能やその取り扱いに関する情報を知ることができます。3D Connexion 17621で得られた情報は、きっとあなたの購入の決断を手助けしてくれることでしょう。
3D Connexion 17621を既にお持ちだが、まだ読んでいない場合は、上記の理由によりそれを行うべきです。そうすることにより機能を適切に使用しているか、又は3D Connexion 17621の不適切な取り扱いによりその寿命を短くする危険を犯していないかどうかを知ることができます。
ですが、ユーザガイドが果たす重要な役割の一つは、3D Connexion 17621に関する問題の解決を支援することです。そこにはほとんどの場合、トラブルシューティング、すなわち3D Connexion 17621デバイスで最もよく起こりうる故障・不良とそれらの対処法についてのアドバイスを見つけることができるはずです。たとえ問題を解決できなかった場合でも、説明書にはカスタマー・サービスセンター又は最寄りのサービスセンターへの問い合わせ先等、次の対処法についての指示があるはずです。
