| IfIndex |
| This object specifies the interface index, for which the table entry shall be valid. If set to 0, the entry will be valid for all interfaces configured to use NAT. |
| Protocol |
| This object specifies the protocol, for which the table entry shall be valid. Enumerations: - icmp (1)
- igmp (2)
- ggp (3)
- ip (4)
- tcp (6)
- egp (8)
- igp (9)
- pup (12)
- chaos (16)
- udp (17)
- hmp (20)
- xns-idp (22)
- rdp (27)
- ipv6 (41)
- rsvp (46)
- gre (47)
- esp (50)
- ah (51)
- tlsp (56)
- skip (57)
- kryptolan (65)
- iso-ip (80)
- igrp (88)
- ospf (89)
- ipip (94)
- ipx-in-ip (111)
- vrrp (112)
- l2tp (115)
- any (255)
- delete (256)
|
| RemoteAddr |
| This object specifies together with ipNatOutRemoteMask the set of target IP addresses for which the table entry is valid. If both objects are set to 0.0.0.0, the table entry will be valid for any target IP address. |
| RemoteMask |
| This object specifies together with ipNatOutRemoteAddr the set of target IP addresses for which the table entry is valid. If both objects are set to 0.0.0.0, the table entry will be valid for any target IP address. |
| ExtAddr |
| With ipNatOutExtMask, this object specifies the external 'IP address' or 'NET address' to which the internal IP address is mapped. - To map exactly to ipNatOutExtAddr (i.e. map to a single IP address), ipNatOutExtMask MUST be set to 255.255.255.255 - To keep HOST part of source IP address and map only the NET part, ipNatOutExtMask MUST be the related subnet mask (and it should be the same as ipNatOutIntMask ). |
| RemotePort |
| This object specifies together with ipNatOutRemotePortRange the range of portnumbers for outgoing packets, for which the table entry shall be valid. If both objects are set to -1, the entry is valid for all portnumbers. If ipNatOutPortRange is set to -1, the entry is only valid, when the portnumber of an outgoing packet is equal to ipNatOutRemotePort. Otherwise, the entry is valid, if the destination portnumber lies in the range RemotePort .. RemotePortRange. Range: -1 to 65535 |
| RemotePortRange |
| This object specifies together with ipNatOutRemotePort the range of portnumbers for outgoing packets, for which the table entry shall be valid. If both objects are set to -1, the entry is valid for all portnumbers. If ipNatOutPortRange is set to -1, the entry is only valid, when the portnumber of an outgoing packet is equal to ipNatOutRemotePort. Otherwise, the entry is valid, if the destination portnumber lies in the range RemotePort .. RemotePortRange. Range: -1 to 65535 |
| IntAddr |
| This object specifies together with ipNatOutIntMask the internal hosts IP address for outgoing packets matching the table entry. If both objects are set to 0.0.0.0, the table entry will be valid for any source IP address. |
| IntMask |
| This object specifies together with ipNatOutIntAddr the internal hosts IP address for outgoing packets matching the table entry. If both objects are set to 0.0.0.0, the table entry will be valid for any source IP address. |
| IntPort |
| This object specifies the internal source port for which the table entry shall be valid. If this object is set to -1, any internal source port matches this entry. Range: -1 to 65535 |
| ExtPort |
| This object may be used to specify a fixed external source port to which the internal source port is mapped. If this object is set to -1, the port is mapped to the next free source port available. Range: -1 to 65535 |
| ExtMask |
| With ipNatOutExtAddr, this object specifies the external 'IP address' or 'NET address' to which the internal IP address is mapped. - To map exactly to ipNatOutExtAddr (i.e. map to a single IP address), ipNatOutExtMask MUST be set to 255.255.255.255 - To keep HOST part of source IP address and map only the NET part, ipNatOutExtMask MUST be the related subnet mask (and it should be the same as ipNatOutIntMask). |
| Timeout |
| When there is no traffic associated with a NAT entry, this entry is discarded at the end of a timeout value. This object holds this timeout value in seconds. If set to the default value of 0, the timeout will be set to the value specified either in ipExtIfNatTcpTimeout or ipExtIfNatOtherTimeout, depending on the protocol. Range: 0 to 5184000 |
| Descr |
| A textual string describing this NAT translation rule. Length: 0 to 255 |
| NatCategory |
| Specifies the NAT category according RFC 3489 and 5389 to be applied for UDP traffic matching with this entry. Enumerations: - full-cone (1)
- restricted-cone (2)
- port-restricted-cone (3)
- symmetric (4)
|
| IntPortRange |
| This object specifies together with ipNatOutIntPort the internal source port range for which the table entry shall be valid. If this object is set to -1, only ipNatOutIntPort is used as selector for this entry. Range: -1 to 65535 |
| ExtPortRange |
| This object may be used together with ipNatOutExtPort to specify a fixed external source port number range to which the internal source port numbers are mapped. This mapping depends on the position of the original source port number within the range specified by ipNatOutIntPort and ipNatOutIntPortRange. If this object is set to -1, only ipNatOutExtPort is considered for this entry. Range: -1 to 65535 |
| SrcIfIndex |
| This object specifies the source (interface index) of the traffic flows for which the table entry shall be valid. If set to 0, this parameter will not be checked. |