Usage Scenario
Due to some unavailable IP address or IP address ranges, multiple NAT address pools must be configured so that each pool can only contain a continuous range of IP addresses. As a result, multiple policies for assigning public IP addresses have to be configured, which decreases the configuration flexibility. To address this problem, run the nat address-group exclude-ip-address command to remove a specific IP address or a network segment address from a continuous range in a NAT address pool, which increases configuration flexibility.
Prerequisites
A NAT address pool has been configured in the NAT instance view.
Precautions
- A maximum of 10 IP addresses can be removed from a public IP address segment. The excluded IP addresses must be different.
- The nat address-group exclude-ip-address command only removes a public IP address or a public IP address segment.
- When you restore an IP address or an IP address range in a NAT address pool using the undo nat address-group command, the specified IP address or IP address range must be within the excluded IP address range.
- Only public IP addresses can be excluded from an IP address pool. exclude-ip-address cannot be out of the specified IP address range.
- If an address pool is configured by specifying mask, the device advertises specific UNRs instead of network segment UNRs after this command is run. If you run this command to exclude some public IP addresses, routes to the public IP addresses may fail to be advertised, and services may be interrupted.
