[j-nsp] Destination NAT with Junos 9.5
Ben Dale
bdale at comlinx.com.au
Wed Jun 10 22:55:52 EDT 2009
I have run into this issue in the past - one hack I have used to work
around it is to configure for example 8 rules of destination NAT and
then 8 rules of static NAT. The static NAT takes away your ability to
specify port, but you could use policies to limit the traffic allowed
through (but not perform PAT though).
Cheers,
Ben
On 10/06/2009, at 11:10 PM, Alexander Shikoff wrote:
Hello!
I have J2320 with JunOS 9.5, one external interface with one IP-address.
I wish to make destination NAT for 12 different hosts in my internal
network,
for example
<external IP> port 5000 -> <local IP1> port 5000
<external IP> port 5001 -> <local IP2> port 5001
[...]
But one rule-set can contain only 8 rules. If I split all 12 rules in
some
rule-sets, then I get an error
"error: Destination NAT rule-set NAT-Prime and NAT-DOM have same
context."
Is there a way to solve this? Thanks.
--
MINO-RIPE
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list