Navigation
Supported Platforms
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
[edit security nat] Hierarchy Level
security {nat {destination {... the destination subhierarchy appears after the main [edit security nat] hierarchy ...}proxy-arp {interface interface-name {address ip-address</prefix-length> <to higher-ip-address</prefix-length>>;}}source {... the source subhierarchy appears after the main [edit security nat] hierarchy ...}static {rule-set rule-set-name {from (interface [ interface-names ] | routing-instance [ routing-instance-names ] | zone [ zone-names ]);rule rule-name {match {destination-address ip-address</prefix-length>;}then {static-nat prefix ip-address</prefix-length> <routing-instance routing-instance-name>;}}}}traceoptions {file <filename> <files number> <match regular-expression> <size maximum-file-size> <world-readable | no-world-readable>;flag flag <syslog>;no-remote-trace;}} nat {destination {pool pool-name {address ip-address</prefix-length> (port port-number | to higher-ip-address</prefix-length>);routing-instance routing-instance-name;}rule-set rule-set-name {from (interface [ interface-names ] | routing-instance [ routing-instance-names ] | zone [ zone-names ]);rule rule-name {match {destination-address ip-address</prefix-length>;destination-port port-number;source-address [ source-addresses ];}then {destination-nat (off | pool pool-name);}}}}} nat {source {address-persistent;interface {port-overloading off;}pool pool-name {address ip-address</prefix-length> <to higher-ip-address</prefix-length>>;host-address-base ip-address</prefix-length>;overflow-pool (interface | pool-name);port (no-translation | range lower-port-number to higher-port-number);routing-instance routing-instance-name;}pool-utilization-alarm {clear-threshold threshold-value;raise-threshold threshold-value;}port-randomization disable;rule-set rule-set-name {from (interface [ interface-names ] | routing-instance [ routing-instance-names ] | zone [ zone-names ]);rule rule-name {match {destination-address ip-address</prefix-length>;destination-port port-number;source-address [ source-addresses ];}then {source-nat {(... the following interface statement ... | off | pool pool-name);interface {persistent-nat {inactivity-timeout seconds;max-session-number number;permit (any-remote-host | target-host | target-host-port);}}}}}to (interface [ interface-names ] | routing-instance [ routing-instance-names ] | zone [ zone-names ]);}}}}
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
Published: 2013-07-31
Supported Platforms
Related Documentation
- EX, J, M, MX, PTX, SRX, T Series
- Notational Conventions Used in Junos OS Configuration Hierarchies
- EX, J, M, MX, QFX, SRX, T Series
- [edit security] Hierarchy Level
