Citrix SD-WAN Orchestrator for On-premises 11.1

Network address translation

Network Address Translation (NAT) on the SD-WAN appliances translates the private IP addresses within your local branch or data center enterprise network to a single Public IP address. The public IP address is used for communication over the internet.

For more information about configuring NAT, see Network Address Translation.

To configure NAT for a site using the Citrix SD-WAN Orchestrator for On-premises, from site level, navigate to Configuration > Advanced Settings > NAT.

Configure NAT navigation

You can configure the following types of NAT:

  • Dynamic source NAT
  • Static NAT
  • Destination NAT

Dynamic source NAT

Dynamic Source NAT allows multiple hosts to have their source IP addresses translated to the same public IP address with different port numbers. Port restricted NAT uses the same outside port for all translations related to an Inside IP address and port pair. For more information, see Configure Dynamic NAT.

Dynamic source NAT detail

Static NAT

In Static NAT, a permanent 1–1 mapping between an internal private address and a public address is done. This type of NAT can be used for allowing traffic into a mail server or web server. For more information, see Configure Static NAT.

Static source NAT detail

Destination NAT

Destination NAT is performed on incoming packets when the SD-WAN appliance translates a public destination address to a private address. It also allows port forwarding.

Destination NAT detail

Network address translation