SOLVING THE PROBLEM
Using the Firewall to perform Carrier Grade NAT provides a range of advantages for network administrators who need to manage infrastructure. It eliminates additional hardware and dependencies but also simplifies security and audit intelligence through integrated logging capabilities and holistic analytics applications. The solution supports address translation mechanisms in order to support IPv6 host only translation to IPv4 host only addresses. NAT44 functionality extends the use of IPv4 addresses and support legacy devices not supporting IPv6. NAT64 is required to allow IPv6 endpoints to access IPv4 content and destinations. Stateful address/port/protocol translation is supported as well as stateless address translation, also referred to as SIIT, for a dynamic approach. IP addresses from the external pool can either be allocated in a fixed, stateful or stateless fashion.
Deploying Carrier Grade NAT is a necessity for network administrators as the migration to IPv6 will take time. Utilizing firewall-based Carrier Grade NAT provides significant advantages such as accurate analytics and logging and base security mitigation services such as the ability to detect and act on abnormal traffic patterns. Integrated in the Firewall Carrier Grade NAT reduces costs, simplifies networking infrastructure and increases availability.
Higher level of protection
Reduction of cost
The following Clavister products are capable of providing this use case.
Solutions & Customers
The following solutions and customers benefit from this use-case: