[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

show security nat destination rule

Syntax

show security nat destination rule
<rule-name>
all

Release Information

Command introduced in Release 9.2 of JUNOS software.

Description

Display information about the specified destination Network Address Translation (NAT) rule.

This command is supported on SRX-series devices.

Options

rule-name—Name of the rule.

all—Display information about all the destination NAT rule.

Required Privilege Level

view

Related Topics

rule (Destination NAT)

List of Sample Output

show security nat destination rule r4
show security nat destination rule all

Output Fields

Table 72lists the output fields for the show security nat destination rule command. Output fields are listed in the approximate order in which they appear.Table 71 lists the output fields for the show security nat destination rule command. Output fields are listed in the approximate order in which they appear.

Table 72: show security nat destination rule Output Fields

Field Name

Field Description

Destination nat rule

Name of the destination NAT rule.

State

Status of the IP address:

  • Active—Denotes that the IP address is in use.
  • Free—IP address is available for allocation.

Index

Rule index number.

From routing instance

Name of the routing instance from which the packet comes.

Source address

Name of the source addresses which match the rule. The default value is any.

Destination address

Name of the destination addresses which match the rule. The default value is any.

Destination ports

Destination ports number which match the rule. The default value is any.

Action

The action taken in regard to a packet that matches the rule’s tuples. Actions include the following:

  • destination-nat—Use user-defined destination NAT pool to perform destination NAT.
  • ui—Do not perform destination NAT.

Hit times

Number of times a translation in the translation table is used for a destination NAT rule.

Fail times

Number of times a translation in the translation table failed to translate for a destination NAT rule.

Total destination nat rule number

Number of destination NAT rules.

Total hit times

Number of times a translation in the translation table is used for all the destination NAT rules.

Total fail times

Number of times a translation in the translation table failed to translate for all the destination NAT rules.

show security nat destination rule r4

user@host>show security nat destination rule r4 
Destination nat rule: r4, State: enabled, Index: 7
      From routing instance: ri-1
      Source addresses:
        any: 0.0.0.0/0
      Destination addresses:
        1.1.1.1/32 1.1.1.3/32
      Destination ports:
        any: 0
      Action: destination-nat pool d1
      
      Hit times: 30
      Fail times: 0

show security nat destination rule all

user@host> show security nat destination rule all 
Total destination nat rule number: 2
    Total hit times: 45
    Total fail times: 3 

    Destination nat rule: r4, State: enabled, Index: 7
      From routing instance: ri-1
      Source addresses:
        any: 0.0.0.0/0
      Destination addresses:
        1.1.1.1/32 1.1.1.3/32
      Destination ports:
        any: 0
      Action: destination-nat pool d1
      
      Hit times: 30      
      Fail times: 0

    Destination nat rule: r5, State: enabled, Index: 8
      From routing instance: ri-1, interface: fe-0/0/0.0
      Source addresses:
        any: 0.0.0.0/0
      Destination addresses:
        1.1.1.1/32
      Destination ports:
        any: 0
      Action: destination-nat pool d3
      
      Hit times: 15
      Fail times: 3
[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]