[j-nsp] Netscreen SSG src-dest NAT with static mapping problem
Mark Tech
techconfig at yahoo.com
Wed Dec 3 06:11:14 EST 2008
Hi
I am having a bit of trouble trying to do the following NAT with static mapping, i.e:
src 2.2.2.2 dest 1.1.1.1 (tr) NETSCREEN (dmz) src 10.1.1.254 dest 10.1.1.1
src 2.2.2.2 dest 1.1.1.2 (tr) NETSCREEN (dmz) src 10.1.1.254 dest 10.1.1.2
src 2.2.2.2 dest 1.1.1.x (tr) NETSCREEN (dmz) src 10.1.1.254 dest 10.1.1.x
1 to 1 destination mapping:
1.1.1.1 - 10.1.1.1
1.1.1.2 - 10.1.1.2
1.1.1.3 - 10.1.1.3
1.1.1.4 - 10.1.1.x
i.e. if I ping 1.1.1.1 within the trusted zone from 2.2.2..2 for example, 1.1.1.1 will be mapped to 10.1.1.1 and forwarded to the device with 10.1.1.1
The device (10.1.1.1) will see the source IP address as 10.1.1.254
Is this possible? If so is there a config example to show me as FW's aren't my speciality
Regards
Mark
More information about the juniper-nsp
mailing list