This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Destination NAT with multiple server.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Destination NAT with multiple server.

Jafar_Hussain
L4 Transporter

‎04-23-2020 03:50 AM

Hello Team,

 

I have configured destination NAT in my environment with one server.

Now i can see the number of users increases and too much traffic i am getting in one server, so i want to configure 2 more server with the same services.

For example:-

 

If user 1 want to connect my destination it will translate to 10.0.0.1

If user 2 want to connect my destination it will translate to 10.0.0.2

If user 3 want to connect my destination it will translat to 10.0.0.3

 

 

please let me know how i can achieve this requirement.

 

Jafar_Hussain_0-1587638994562.jpeg

 

0 Likes Likes
4 REPLIES 4

SutareMayur
L6 Presenter

‎04-23-2020 03:59 AM

@Jafar_Hussain,

 

Currently you can't achieve it on Palo Alto. You need something like Load Balancer to achieve this requirement.

 

Mayur

M

Check out my YouTube channel - https://www.youtube.com/@NetworkTalks
0 Likes Likes

Jafar_Hussain
L4 Transporter
In response to SutareMayur

‎04-23-2020 04:08 AM

@SutareMayur 

 

Thanks for your reply.

 

I have gone through these documents and found this:-

 

https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-new-features/networking-features/session-dist-dn...

 

can we create like this create a one address object with interface range (10.0.0.1-10.0.0.3) and the same object we can allow in destination NAT and we will select the round-robin method?

 

Please suggest this.

 

 

SutareMayur
L6 Presenter
In response to Jafar_Hussain

‎04-23-2020 04:25 AM

@Jafar_Hussain,

 

Yes you can give a try, as per the article it should work. I haven't tried it yet.

 

Mayur

M

Check out my YouTube channel - https://www.youtube.com/@NetworkTalks
0 Likes Likes

Wagdy-Maher
L0 Member

‎05-08-2024 10:31 PM

 you can achive this using user-id as a source address in the nat and create a policy to allow this traffic.

0 Likes Likes
  • 3582 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks