华为AR46

拓扑图如下：

目的：通过外网地址192.168.1.3的10001端口访问主用10.8.30.110的1024端口，通过外网地址192.168.1.3的10002端口访问备用10.8.30.111的1024端口。

使用串口登陆路由器 进入系统视图 system [Quidway] 配置内网接口

[Quidway]interface Ethernet 0/0/0

[Quidway-Ethernet0/0/0]ip address 10.8.30.153 255.255.255.0 [Quidway-Ethernet0/0/0]quit [Quidway]

配置内网地址池，要包括主备用地址10.8.30.110、10.8.30.111 [Quidway]acl number 2000

[Quidway-acl-basic-2000]rule 0 permit source 10.8.30.0 0.0.0.255 [Quidway-acl-basic-2000]quit [Quidway]

配置外网地址池，要包括外网地址192.168.1.3

[Quidway]nat address-group 1 192.168.1.3 192.168.1.4 [Quidway] 配置外网接口

[Quidway]interface Ethernet 0/0/1

[Quidway-Ethernet0/0/1] ip address 192.168.1.1 255.255.255.0 配置内外网地址映射

[Quidway-Ethernet0/0/1]nat outbound 2000 address-group 1 配置端口映射

[Quidway-Ethernet0/0/1]nat server protocol tcp global 192.168.1.3 10001 inside 10.8.30.110 1024 [Quidway-Ethernet0/0/1]nat server protocol tcp global 192.168.1.3 10002 inside 10.8.30.111 1024 [Quidway-Ethernet0/0/1]quit [Quidway] 验证配置

[Quidway] display current-configuration 以下只截取了一部分 #

sysname Quidway #

nat address-group 1 192.168.1.3 192.168.1.4 #

acl number 2000

rule 0 permit source 10.8.30.0 0.0.0.255 #

interface Ethernet0/0/0

ip address 10.8.30.153 255.255.255.0 #

interface Ethernet0/0/1

ip address 192.168.1.1 255.255.255.0 nat outbound 2000 address-group 1

nat server protocol tcp global 192.168.1.3 10001 inside 10.8.30.110 1024 nat server protocol tcp global 192.168.1.3 10002 inside 10.8.30.111 1024