[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

CLI Configuration

To configure static NAT, use the CLI configuration editor:

Configure interfaces.user@host# set interfaces ge-0/0/0 unit 0 family inet address 10.1.1.1/24 user@host# set interfaces ge-0/0/2 unit 0 family inet address 1.1.1.1/24
Configure zones.user@host# set security zones security-zone private user@host# set security zones security-zone public user@host# set security zones security-zone private interfaces ge-0/0/0.0 user@host# set security zones security-zone public interfaces ge-0/0/2.0
Configure addresses.user@host# set security zones security-zone private address-book address phone1 10.1.1.3/32 user@host# set security zones security-zone private address-book address proxy 10.1.1.4/32 user@host# set security zones security-zone public address-book address phone2 1.1.1.4/32
Configure static NAT.user@host# set security nat interface ge-0/0/2.0 static-nat 1.1.1.2/32 host 10.1.1.4/32
Configure policies.user@host# set security policies from-zone private to-zone public policy outgoing match source-address any user@host# set security policies from-zone private to-zone public policy outgoing match destination-address phone2 user@host# set security policies from-zone private to-zone public policy outgoing match application junos-sip user@host# set security policies from-zone private to-zone public policy outgoing then permit source-nat interface user@host# set security policies from-zone public to-zone junos-global policy incoming match source-address phone2 user@host# set security policies from-zone public to-zone junos-global policy incoming match destination-address static_nat_1.1.1.2_32 user@host# set security policies from-zone public to-zone junos-global policy incoming match application junos-sip user@host# set security policies from-zone public to-zone junos-global policy incoming then permit

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]