When a client sends a packet to a NetScaler appliance that is configured for Inbound Network Address Translation (INAT), the appliance translates the packet's public destination IP address to a private destination IP address and forwards the packet to the server at that address.
When the appliance forwards a packet to a server, the source IP address assigned to the packet is determined as follows:
To protect the NetScaler from DoS attacks, you can enable TCP proxy. However, if other protection mechanisms are used in your network, you may want to disable them.
You can create, modify, or remove an INAT entry.
At the command prompt, type the following commands to create an INAT entry and verify its configuration:
> add inat ip4-ip4 172.16.1.2 192.168.1.1 -proxyip 10.102.29.171 Done
To modify an INAT entry, type the set inat command, the name of the entry, and the parameters to be changed, with their new values.
At the command prompt, type:
> rm inat ip4-ip4 Done
Navigate to, and add a new INAT entry or edit an existing INAT entry.
Navigate to, delete the INAT configuration.