[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

rule-set

See the following sections:

rule-set (Destination NAT Services Gateway)

Syntax



rule-set              rule-set-name            {
from interface [interface-name]
| 
routing-instance [routing-instance-name]
| zone [zone-name];


rule    
           rule-name              {


match {
destination-address                  destination-address               ;
destination-port                  port-number               ;
source-address [source-address];
}




then {
destination-nat (off | pool                  pool-name       
       );
}


}


}

Hierarchy Level



[edit security nat destination]

Release Information

Statement introduced in Release 9.2 of JUNOS software.

Description

Configure the set of rules for destination NAT.

This statement is supported on SRX-series devices.

Options

rule-set-name —Name of the rule set.
The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

rule-set (Source NAT Services Gateway)

Syntax



rule-set              rule-set-name            {
from interface [interface-name]
| 
routing-instance [routing-instance-name]
| zone [zone-name];


rule    
           rule-name              {


match {
destination-address [destination-address];
source-address [source-address];
}




then {
source-nat (off | interface
| pool                  pool-name               );
}


}


to interface [interface-name]
| 
routing-instance [routing-instance-name]
| zone [zone-name];
}

Hierarchy Level



[edit security nat source]

Release Information

Statement introduced in Release 9.2 of JUNOS software.

Description

Configure the set of rules for source NAT.

This statement is supported on SRX-series devices.

Options

rule-set-name —Name of the rule set.
The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

rule-set (Static NAT Services Gateway)

Syntax



rule-set              rule-set-name            {
from interface [interface-name]
| 
routing-instance [routing-instance-name]
| zone [zone-name];


rule    
           rule-name              {


match {
destination-address [destination-address];
}




then {
static-nat prefix <                 addr-prefix     
         >
<routing-instance                  routing-instance-name               >;
}


}


}

Hierarchy Level



[edit security nat static]

Release Information

Statement introduced in Release 9.3 of JUNOS software.

Description

Configure the set of rules for static NAT.

This statement is supported on SRX-series devices.

Options

rule-set-name —Name of the rule set.
The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]