When users access an IPv4 network through a NAT64 device, the source IP addresses of users are translated addresses. It is difficult to accurately locate the hosts or users who access the network, which reduces network security.
NAT64 logs can address this problem. NAT64 logs record information about NAT64 flows so that administrators can learn addresses before NAT64 translation to query and trace network activities and operations. This improves network availability and security.
The NetEngine 8000 F supports NAT64 flow logs.
Flow logs apply when a NAT64 device establishes and age sessions. Flow logs contain the source IP address, source port number, destination IP address, post-translated source IP address, post-translated source port number, and protocol type. They are sent to a log server. Flow logs contain rich data, with data volume being large. Flow logs are not only used for source tracing, but also used for providing information about external networks accessed by users.
Flow logs support the binary formats and are transmitted through a configured UDP port.
Flow logs on the NetEngine 8000 F support the syslog format and eLog format.
For details about the preceding log formats, see "NAT Logging" in HUAWEI NetEngine 8000 F Series Router Feature Description – NAT.