5.8.3. Class GeneralNAT

This class encapsulates a general subnet-to-subnet NAT. It requires a list of from, to, translated to parameters:

from: the source address of the connection.
to: the destination address of the connection.
translated to: the translated address.

If the NAT policy is used as SNAT, the translated address is used to translate the source address of the connection; if the NAT policy is used as DNAT, the translated address is used to translate the destination address of the connection. The translation occurs according to the first matching rule.

Example 5.29. GeneralNat example

Example 5.29. GeneralNat example
The following example defines a simple GeneralNAT policy that maps connections coming from the `192.168.1.0/24` subnet and targeting the `192.168.10.0/24` subnet into the `10.70.0.0/24` subnet. NATPolicy(name="Demo_GeneralNAT", nat=GeneralNAT(mapping=((InetSubnet("192.168.1.0/24"), InetSubnet("192.168.10.0/24"), InetSubnet("10.70.0.0/24")),))) If the policy is used as SNAT, the `192.168.1.0/24` subnet is translated into the `10.70.0.0/24` subnet and used as the source address of the connection. If the policy is used as DNAT, the `192.168.10.0/24` subnet is translated into the `10.70.0.0/24` subnet and used as the target address of the connection.

The following example defines a simple GeneralNAT policy that maps connections coming from the 192.168.1.0/24 subnet and targeting the 192.168.10.0/24 subnet into the 10.70.0.0/24 subnet.

NATPolicy(name="Demo_GeneralNAT", nat=GeneralNAT(mapping=((InetSubnet("192.168.1.0/24"), InetSubnet("192.168.10.0/24"), InetSubnet("10.70.0.0/24")),)))

If the policy is used as SNAT, the 192.168.1.0/24 subnet is translated into the 10.70.0.0/24 subnet and used as the source address of the connection. If the policy is used as DNAT, the 192.168.10.0/24 subnet is translated into the 10.70.0.0/24 subnet and used as the target address of the connection.

Previous	Up	Next
	Home

Zorp GPL 7 Reference Guide

5.8. Module NAT

5.8.3. Class GeneralNAT