Solved: Add NSX NAT Rule with service entry configured wit...

pearl1594 · ‎10-26-2023

Hi,

As per the documentation it seems like it is possible to add a port range for translated ports when creating an NSX NAT rule, however, on doing so, it seems to fail

Any help understanding what I may be doing wrong in the configuration would greatly be appreciated.

Thanks!

EvertAM · ‎11-01-2023

I believe your issue might be that you're adding multiple ports to both the original and the translated ports. Adding multiple ports is generally used for NAT overload.

Based in your screenshot, you're trying to NAT all traffic to an IP, but only allow certain ports in. This would be better handled using a firewall rule. If you are specifically trying to NAT only 3 ports (while handling traffic to other ports differently), I think you'll need multiple NAT rules.

View solution in original post

EvertAM · ‎11-01-2023

I believe your issue might be that you're adding multiple ports to both the original and the translated ports. Adding multiple ports is generally used for NAT overload.

Based in your screenshot, you're trying to NAT all traffic to an IP, but only allow certain ports in. This would be better handled using a firewall rule. If you are specifically trying to NAT only 3 ports (while handling traffic to other ports differently), I think you'll need multiple NAT rules.

All

Add NSX NAT Rule with service entry configured with port number range

Hi