nat64 log host

Function

The nat64 log host command configures NAT log host information, such as the log host's IP address, port number, log host name, and source IP address and port number that a device uses to communicate with a log host.

The undo nat64 log host command deletes NAT64 log host configurations.

No NAT64 log host is configured by default.

This command is supported only on the NetEngine 8000 F1A.

Format

nat64 log host host-ip-address host-port source source-ip-address source-port [ name host-name ] [ vpn-instance vpn-instance-name ]

undo nat64 log [ host host-ip-address [ host-port source source-ip-address source-port [ name host-name ] [ vpn-instance vpn-instance-name ] ] ]

Parameters

Parameter Description Value
host-ip-address

Specifies IP address of a NAT64 log host.

The value is in dotted decimal notation.
host-port

Specifies the port number of a NAT64 log host.

The value is an integer ranging from 1 to 65535.
source source-ip-address

Specifies the source IP address used by a NAT64 device to communicate with a NAT log host.

The value is in dotted decimal notation.
source-port

Specifies the source port number used by a NAT64 device to communicate with a NAT64 log host.

The value is an integer ranging from 1 to 65535.
name host-name

Specifies the name of a NAT64 log host.

The value is a string of 1 to 31 case-sensitive characters, spaces not supported. When double quotation marks are used around the string, spaces are allowed in the string.
vpn-instance vpn-instance-name

Specifies the name of a VPN instance to which a NAT64 log host belongs.

The value is a string of 1 to 31 case-sensitive characters, spaces not supported. In addition, the VPN instance name must not be _public_. When double quotation marks are used around the string, spaces are allowed in the string.

Views

NAT64 instance view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
nat write

Usage Guidelines

Usage Scenario

To configure a NAT64 log host, run the nat64 log host command. After NAT64 translates a source private IP address to a source public IP address, the source that initiates a request to access a network cannot be located, which decreases network security. To improve network security, the flow log function can be configured. NAT64 logs record information about NAT64 flows so that administrators can obtain addresses used before NAT64 translation is performed to query and trace network activities and operations. This improves network availability and security.

Prerequisites

The NAT64 log function has been enabled using the nat64 log enable command.

Precautions

A log host is uniquely identified by its IP address, port number, and VPN instance name.

Example

# Set the IP address of a log host to 192.168.100.10 in a NAT64 instance named nat1.
<HUAWEI> system-view
[~HUAWEI] nat64 instance nat1 id 1
[*HUAWEI-nat64-instance-nat1] nat64 log host 192.168.100.10 1234 source 10.10.10.1 3456 name server
Parent Topic: NAT64 Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >