| Configure a Service with Destination NATting | |
|---|---|
| Step 1 | Configure Service |
configuration > Authority > Services ADD: webserver3 ADD Address:128.128.128.1/32 SET: Security Policy: encryption_only | |
configuration > Authority > Services: webserver3 > Access Policies SET: Source: corp | |
| Step 2 | Configure Service Route on Branch 1 Router |
configuration > Authority > router: seabo1 ADD: Service Routes: webserver3-route SET: Service Name: webserver3 SET: Service Route Type: Perr Serrvice Route SET: Peer: bosdc1 | |
| Step 3 | Configure Destination NAT Service Route on Datacenter Router 1 |
configuration > Authority > router: seabo1 ADD: Service Routes: local-webserver3-route SET: Service Name: webserver3 SET: Service Route Type: Service Agent SET: NAT Target: 172.36.128.2 | |
| Configure Destination NAT Service Route on Datacenter Router 1Step 4 | Gather PCI Addresses for Datacenter Router 1 |
su admin
>> src3 PCI address | |
| Step 5 | Configure Web Server 3 Interface on Datacenter Router 1 |
Configuration > Authority > Routers: bosdc1 > Node: node1 > Device Interface: srv3 > Network Interface: srv3 > SET: Device Interface Type: ethernet ENTER: PCI Address of srv3 (see at the top ) ADD: Network Interface: srv3 | |
Configuration > Authority > Routers: bosdc1 > Node: node1 > Device Interface: srv3 > Network Interface: srv3 > SET: Security Policy: eas1 ADD: Interface Addresses: 172.36.128.1 SET: Prefix of 30 | |
| VALIDATE and COMMIT | |
| Step 6 | Verify Web Server 3 Connectivity |
| Step 7 | Turn on Packet Capture |
| Step 8 | Verify the Destination NAT |
...