Open topic with navigation

You are here: System Settings > Network Configuration > VLANs > Configuring Outbound NAT

Configuring Outbound NAT

Enabling outbound NAT allows servers on a non-routable network to communicate with hosts on the internet by mapping the server's IP address to another IP address that is routable on the internet. On FortiADC, this is disabled by default. Enabling this option has a performance impact, since FortiADC needs to modify every packet sent and received on server subnets.

Outbound NAT can be configured to map the server's IP address to any FortiADC IP address on the outbound subnet. This includes the main IP address, Failover IP address or any cluster IP address on that subnet.

Note - Because outbound NAT is configured on a subnet basis, individual servers cannot be set up for different outbound NAT IP addresses unless they are in different subnets.

When outbound NAT rules are configured for a subnet, the system treats packets on that subnet as if they are part of the external subnet through which they are being NAT' d.

CollapsedConfiguring outbound NAT using the GUI:
CollapsedTo configure outbound NAT using the CLI: