Product Documentation

Network address translation

The NAT on SD-WAN appliances translates the private IP addresses within your local branch or data center enterprise network to a single Public IP address. The public IP address is used for communication over the internet.

For more information about configuring NAT, see Network Address Translation.

To configure NAT for a site using SD-WAN orchestrator, navigate to Configuration > NAT.

localized image

You can configure the following types of NAT:

  • Dynamic source NAT
  • Static NAT
  • Destination NAT

Dynamic source NAT

Dynamic Source NAT allows multiple hosts to have their source IP addresses translated to the same public IP address with different port numbers. Port restricted NAT uses the same outside port for all translations related to an Inside IP address and port pair. For more information, see Configure Dynamic NAT.

localized image

Static NAT

In Static NAT, a permanent 1–1 mapping between an internal private address and a public address is done. This type of NAT can be used for allowing traffic into a mail server or web server. For more information, see Configure Static NAT.

localized image

Destination NAT

Destination NAT is performed on incoming packets when the SD-WAN appliance translates a public destination address to a private address. It also allows port forwarding. For more information, see Configure Dynamic NAT with port forwarding.

localized image

Network address translation