Patton electronic SmartNode 4110 Series ユーザーズマニュアル

NAT/NAPT configuration task list

SmartWare Software Configuration Guide 

Mode: profile napt <pf-name>

Preserving TCP/UDP port numbers in NAPT 
The NAPT can be configured to preserve the TCP/UDP port number of outbound packets sent from local 
hosts towards the global NAPT interface. If this option is enabled the NAPT tries not to change these port 
numbers. If the port is however already in use, the NAPT will ignore this setting and assign a port number 
from the configured TCP/UDP port ranges. 

Mode: profile napt <pf-name>

Defining the UDP NAPT type
The NAPT type to be applied for UDP packets is configurable using the following procedure. The NAPT sup-
ports the UDP translation types shown in the following list. The list is ordered by the security of the NAPT 
type starting with the highest security type. 

•

symmetric 

•

port-restricted-cone 

•

address-restricted-cone 

•

full-cone 

You find a detailed description of these NAPT types in section 5 of RFC3489. To allow STUN to work 
through the NAPT the full-cone setting is usually required. The default setting is symmetric.

Mode: profile napt <pf-name>

[name] (pf-napt)[pf-name]# tcp-port-
range <range-start-tcp-port> 
<range-end-tcp-port>

Define the TCP port range

[name] (pf-napt)[pf-name]# udp-
port-range <range-start-udp-
port> <range-end-udp-port>

Define the UDP port range

[name] (pf-napt)[pf-name]# [no] 
preserve-tcp-ports

Enable/disable preserving of TCP ports.

[name] (pf-napt)[pf-name]# [no] 
preserve-udp-ports

Enable/disable preserving of UDP ports.

[name] (pf-napt)[pf-name]# udp-handling {symmetric|address-
restricted-cone|port-restricted-cone|full-cone}

Define the UDP 
translation type