Cisco Cisco Packet Data Gateway (PDG) Documentation Roadmaps
Network Address Translation Overview
▀ NAT Feature Overview
▄ Cisco ASR 5000 Series Product Overview
OL-22937-01
NAT-Port-Block-End: In the case of one-to-one NAT, the value is 65535
NAT-Port-Block-Start: In the case of one-to-one NAT, the value is 1
CoA NAT Query
If the NAT binding information is not available at the AAA, the AAA server can query the chassis for the information.
This query uses the Change of Authorization (CoA) format, wherein the AAA sends a one-to-one NAT IP address as a
query, and in the CoA query response the NBU is obtained if available at the time of query.
This query uses the Change of Authorization (CoA) format, wherein the AAA sends a one-to-one NAT IP address as a
query, and in the CoA query response the NBU is obtained if available at the time of query.
Important:
In this release, CoA query for NAT binding information is only supported for one-to-one NAT.
The CoA query request must contain the following attributes:
Event-Timestamp
NAS-IP-Address
SN1-NAT-IP-Address
Important:
For SN1-NAT-IP-Address, this release supports VSA-Type values 0 and 1.
For a successful query, the CoA ACK response contains the following attributes:
Acct-Session-Id
Correlation-Id
Framed-IP-Address
NAT-IP-Address
NAT-Port-Block-End
NAT-Port-Block-Start
User-Name
Important:
For information on the AVPs/VSAs, please refer to the AAA Interface Administration and Reference.
Firewall-and-NAT Policy
Firewall-and-NAT policies are configured in the CLI Firewall-and-NAT Policy Configuration Mode. Each policy
contains a set of access ruledefs with priorities and actions, and the NAT configurations. On a system, multiple such
policies can be configured, however at any point of time only one policy is associated to a subscriber.
contains a set of access ruledefs with priorities and actions, and the NAT configurations. On a system, multiple such
policies can be configured, however at any point of time only one policy is associated to a subscriber.