Overview

Fast Path Carrier Grade NAT provides Network Address Translation and Carrier-grade NAT in the fast path.

The key advantages of Fast Path Carrier Grade NAT are:

  • High Transparency: Fast Path CGNAT implements multiple advanced features like Endpoint-Independent Mapping, Endpoint-Independent Filtering, address pooling and port parity preservation. These features provide better experience to ‘nated’ users and allow scaling.
  • Fairness and Resource Sharing: Fast Path Carrier Grade NAT provides option to limit the number of connections per user. This ensures that resources are equitably shared between the different users.
  • Optimized Logging system: CGNAT can generate large amounts of logging data. Fast Path Carrier Grade NAT implements a feature called port block allocation to limit the number of log entries by grouping per port range.
  • Support for Application Level Gateway: some protocols (e.g. FTP) requires a deep inspection

Connection tracking is directly done in the fast path without any interaction with the Linux kernel, to offer the best possible performance.

Consequently, Fast Path Carrier Grade NAT is standalone and it has its own API to configure NAT rules.

Features

  • NAT44
  • ALGs: FTP, TFTP, RTSP, PPTP, SIP, H323
  • Manage pool of public IP addresses and range of ports
  • Dynamically updating/resizing of IP pool without affecting traffic
  • Round-robin allocation for NAT pools
  • IP address pooling paired
  • Port assignement: random or parity
  • Endpoint-Independent Mapping
  • Endpoint-Independent Filtering
  • Hairpinning
  • Port Block Allocation (PBA)
  • Per user/per CPE session limiter
  • Advanced logging features to meet government requirements
  • VRF