Configuring Static and Dynamic NAT Translation
9.
10.
11.
12. interface type number
13. ip address ip-address mask
14. ip nat outside
15. exit
16. ip nat translation tcp-timeout seconds
17.
18. ip nat translation udp-timeout seconds
19. ip nat translation timeout seconds
20. ip nat translation syn-timeout {seconds | never}
21.
22. end
DETAILED STEPS
Command or Action
Step 1
enable
Example:
Switch> enable
Step 2
configure terminal
Example:
Switch# configure terminal
Step 3
ip access-list access-list-name
Example:
Switch(config)# ip access-list acl1
Step 4
permit protocol source source-wildcard any
Example:
Switch(config-acl)# permit ip 10.111.11.0/24 any
Step 5
deny protocol source source-wildcard any
Example:
Switch(config-acl)# deny udp 10.111.11.100/32 any
Step 6
exit
Example:
Switch(config-acl)# exit
ip address ip-address mask
ip nat inside
exit
ip nat translation max-entries [all-host] number-of-entries
ip nat translation finrst-timeout {seconds | never}
Cisco Nexus 3548 Switch NX-OS Interfaces Configuration Guide, Release 9x
Configuring Dynamic Translation and Translation Timeouts
Purpose
Enables privileged EXEC mode.
• Enter your password if prompted.
Enters global configuration mode.
Defines an access list and enters access-list configuration
mode.
Sets conditions in an IP access list that permit traffic
matching the conditions.
Sets conditions in an IP access list that deny packets from
entering a network.
The deny rule is treated as a permit rule, and the packets
matching the criteria mentioned in the deny rule are
forwarded without NAT translation.
Exits access-list configuration mode and returns to global
configuration mode.
107