Forum Discussion
nitass
Employee
i want to implement a NAT-like feature that translates the destination IP address based on a data group containing networks
can you give some example?
MDPF5_152674
Jul 07, 2014Altostratus
Yes of course,
So, we have a data group called NATNET that includes networks:
10.12.0.0/24
10.12.1.0/24
10.12.2.0/24
10.12.44.0/24
10.12.60.0/24
Example Scenario:
There is an incoming packet to our forwarding virtual server with Source IP : X.X.X.X and Destination IP : 10.20.30.12
When the packet have the destination ip that matches in the networks contained in the data group NATNET ( i can check it by using an IF condition with a scan fuction and compare it)
But now inside the IF condition (So, the condition is true ) i want to Translate the destination ip like a snat irule
like this:
scan [IP::local_addr] "%d.%d.%d.%d" a b c d
now i want to translate the Destination IP in --> 192.12.$c.$d
i Hope i was clear enough to understand
Thanks in advance for all your support