Configure LSN LIDs

You are here:

Configure LSN LIDs

To configure an LID:

Navigate to CGN Technology > LSN (NAT 44) > LID
Click + Add LID.
On the Add LID page, specify the required details, and click Create.
The create confirmation message is displayed.
The Create LSN LID page and the Update LSN LID page have the same configurable parameters.

The following parameters are available for the configuration:

Field	Option	Description
LID Number		Specify the limit ID number. Specify a value between 1-1023.
Connection Rate Limiting		Specify the limit of the connection rate. Specify a value between 1-65535 connections per second. The default is to have no connection rate limit, except for the maximum number of connections allowed, if this is configured elsewhere.
Name		This is the optional label assigned to the LID. Enter a string from 1-63 characters.
DS-Lite Inside Source Permit List		Select the name of a configured class list from the drop-down. DS-Lite specifies the class list to use for filtering inside IPv4 addresses to identify the hosts or subnets that are permitted to be NATed. In this case, any IPv4 addresses that are not explicitly permitted by the filter are denied. By default, any inside IPv4 address that arrives in the IPv6 tunnel terminated by A10 Control is allowed to be NATed.
Pool Name		Select a configured LSN pool or pool group from the drop-down. For information about LSN pools, see Large-Scale NAT Pools. For information about LSN pool groups, see Large-Scale NAT Pool Groups.
LSN Destination Rule List		Matches LSN client traffic based on its destination in addition to its source, and performs one of the following actions for matching traffic: Redirects the traffic to a specific LSN pool or pool group. Passes the traffic through without performing NAT. Drops the traffic. Select the configured LSN rule list from the drop-down. For information about LSN rule lists, see Large-Scale NAT Rule Lists.
Override Action		Overrides NAT for matching traffic and performs one of the following actions instead: None – This is the default option. Drop – This option drops the traffic. Pass-Through – This option forwards the traffic without performing NAT.
Respond To User MAC		This option enables MAC-based nexthop routing. This feature sends the reply to an inside client’s request back through the same route hop on which the request was received. A10 Control identifies the route hop based on its MAC address. A10 Control sends the reply to the MAC address instead of using the route table to select the next hop for the reply. MAC-based nexthop routing is supported for LSN, DS-Lite, and NAT64. The feature is also supported for SixRD, but only if SixRD is used in combination with NAT64. The feature is not supported for Stateless NAT. The option is not selected by default.
User Quota Prefix Length		User quota is based on an IPv6 prefix. This option simplifies configuration by applying the quota to all clients within the prefix. You do not need to configure quotas for individual clients. Specify a value between 1-128.
Number of Data Session		Specify the limit for the number of concurrent data sessions for LSN, DS-Lite, and NAT64 clients. Specify a value between 1-2147483647.
ICMP Session Quota		Specify the maximum number of ICMP sessions allowed per client. Specify a value between 1-64000.
TCP Session Quota		Specify the maximum number of TCP sessions allowed per client. Specify a value between 1-64000.
TCP Reserve Port Number		Specify the number of TCP ports to reserve on a NAT IP for each user. Specify a value between 0-64000. If the value is not specified, the reserve value is the same as the TCP Session Quota value.
UDP Session Quota		Specify the maximum number of UDP sessions allowed per client. Specify a value between 1-64000.
UDP Reserve Port Number		Specify the number of UDP ports to reserve on a NAT IP for each user. Specify a value between 0-64000. If the value is not specified, the reserve value is the same as the UDP Session Quota value.
Extended User Quota TCP		Specify the per-user TCP extended quota for essential services. To add an extended user quota, click + Add New Row and specify the following options:
	TCP Service Port	Specify the layer 4 protocol port of the service. Specify a value between 1-65535.
	TCP Sessions	Specify how many extended sessions are allowed for the protocol port. Specify a value between 1-255.
Extended User Quota UDP		Specify the per-user UDP extended quota for essential services. To add an extended user quota, click + Add New Row and specify the following options:
	Service Port	Specify the layer 4 protocol port of the service. Specify a value between 1-65535.
	Sessions	Specify how many extended sessions are allowed for the protocol port. Specify a value between 1-255.