IBM Heritage Network Router User Manual


 
Herita
g
e Series ADSL Brid
g
e/ Router
7-39
Command Sets for Command Line Interface
The nat inbound add command allows packets arriving on a
specific port and IP protocol to be forwarded to a machine on the
private network. <i/f> is an interface name as shown by the nat
interface list command; <port> is the destination UDP or TCP
port number to match in the incoming traffic; <proto> is the IP
protocol, either “udp” or “tcp”; <new IP> is the new IP address on
the private network which the packet’s destination IP address should
be translated to. If a rule is added for an interface on which NAT is
not enabled, the rule is added anyway but a warning is printed to
alert the user to this fact. quiet is a special option which should not
normally be issued at the console, and causes this warning to be
suppressed. The quiet option is automatically added by NAT to
when writing its configuration to flash; this is because when a system
boots, the NAT process reads in these rules before IP has registered
any interfaces
nat inbound list shows the current rules for inbound traffic,
including all the arguments passed to the nat inbound add
command.
nat inbound delete removes a rule, where <#> is the rule number
as shown by the nat inbound list command.
nat inbound flush removes all the rules.
Example:
> nat inbound add ppp_device 80/TCP 192.168.219.38
> nat inbound list
# Interface Port/Proto New IP address
1 ppp_device 80/tcp 192.168.219.38
2 r1483 21/tcp 192.168.219.40
> nat inbound delete 2
4. nat info
Syntax:
nat info
Description:
This command displays the values of various parameters, which are
defined in the module file, for example the session table size and the
session timeouts. NAT’s current memory usage is also displayed.
Example:
> nat info
Interface table size 1 (116 bytes)
Session table size per interface: 128 (6656 bytes)
Total: 6656 bytes