Network address translation
The NAT on SD-WAN appliances translates the private IP addresses within your local branch or data center enterprise network to a single Public IP address. The public IP address is used for communication over the internet.
For more information about configuring NAT, see Network Address Translation.
To configure NAT for a site using SD-WAN orchestrator, from site level, navigate to Configuration > Advanced Settings> select NAT tab.
You can configure the following types of NAT:
- Dynamic source NAT
- Static NAT
- Destination NAT
Dynamic source NAT
Dynamic Source NAT allows multiple hosts to have their source IP addresses translated to the same public IP address with different port numbers. Port restricted NAT uses the same outside port for all translations related to an Inside IP address and port pair. For more information, see Configure Dynamic NAT.
In Static NAT, a permanent 1–1 mapping between an internal private address and a public address is done. This type of NAT can be used for allowing traffic into a mail server or web server. For more information, see Configure Static NAT.
Destination NAT is performed on incoming packets when the SD-WAN appliance translates a public destination address to a private address. It also allows port forwarding. For more information, see Configure Dynamic NAT with port forwarding.