To configure Network Address Translation (NAT) services, include the nat statement at the [edit services] hierarchy level:
- [edit services]
- nat {
-
- ipv6-multicast-interfaces (all | interface-name) {
- disable;
- }
-
- pool nat-pool-name {
- address ip-prefix</prefix-length>;
- address-range low minimum-value high maximum-value;
-
- pgcp {
- hint [ hint-strings ];
- ports-per-session ports;
- remotely-controlled;
- transport [ transport-protocols ];
- }
-
- port (automatic | range low value high value) {
- random-allocation;
- }
- }
-
- rule rule-name {
- match-direction (input | output);
-
- term term-name {
- nat-type (full-cone
| symmetric);
-
- from {
- application-sets set-name;
- applications [ application-names ];
- destination-address (address | any-unicast) <except>;
- destination-address-range low minimum-value high maximum-value <except>;
- destination-prefix-list list-name <except>;
- source-address (address | any-unicast) <except>;
- source-address-range low minimum-value high maximum-value <except>;
- source-prefix-list list-name <except>;
- }
-
- then {
- no-translation;
-
- translated {
- destination-pool nat-pool-name;
- destination-prefix destination-prefix;
- overload-pool overload-pool-name;
- overload-prefix overload-prefix;
- source-pool nat-pool-name;
- source-prefix source-prefix;
- translation-type (destination type | source type);
-
- translation-type {
- source type;
- destination type;
- }
- }
- syslog;
- }
- }
- }
-
- }
This chapter includes the following sections: