MSR Series NAT Log configuration

关键词:
功能需求

MSR Series

NAT Log configuration

 

Keywords: MSR; NAT; XLog

 

1. Customer requirements

MSR as the NAT gateway between the customers intranet and the internet, the customer wants the each NAT session generates one record that to be sent to a remote XLog server in a private format named NAT-Log which is not compatible with Syslog.

Devices list: 1 MSR router, 2 PC.

2. Topology

3. Active Configurations

MSR key configuration

#

 // Enable the NAT log to be sent to the XLog server 10.153.43.106 at UDP port 9021 which is different with Syslog

 userlog nat export host 10.153.43.106 9021

#

// The acl for NAT

acl number 2000

 rule 0 permit source 10.153.43.0 0.0.0.255

#

// The interface connects to the Intranet

interface GigabitEthernet0/0

 port link-mode route

 ip address 10.153.43.112 255.255.255.0

#

// The interface connects to the Internet

interface GigabitEthernet0/1

 port link-mode route

 // Enable the traffic defined by ACL 2000 to be translated by NAT

 nat outbound 2000

 ip address 1.2.0.1 255.255.255.252

#

 // Enable the NAT log function

 nat log enable

 // The NAT log will be created as well as the NAT session created

 nat log flow-begin

 // Insert the NAT log every 10 minutes when the NAT session alive

 nat log flow-active 10

#

4. Some advice

1) NAT log function is not opened by default.

2) NAT log triggered by NAT is different from Syslog which controlled by Info-Center.

3) You must enable the NAT log function first.

4) You must enable the NAT log to be sent to a XLog server which differs from Syslog.

案例信息

案例类型:典型配置
案例号:KMS - 14954
创建时间:2008年7月23日
更新时间:2008年7月28日
发布时间:2008/7/28 2:56:24
文章密级:游客可见
有效期:长期有效
发布者:丘子隽 [q04986]
点击次数:507
评论平均得分:0
关键词:
产品线:中低端路由器
产品系列:
产品版本:
技术分类:网络层协议 L2tp

常用操作
收藏