[j-nsp] NAT SSG-500

Michel de Nostredame d.nostra at gmail.com
Tue Aug 24 15:20:38 EDT 2010


Hi ibariouen,

I think you need to use policy based NAT, so you can control which IP needs
to be NATed, and which IP doesn't.

regards,
--
Michel~



On Tue, Aug 24, 2010 at 8:41 AM, ibariouen khalid <ibariouen at gmail.com>wrote:

> Dear community
>
> i have the following design issue and i need your feed-back on it :
>
> i have many clients that need to be connected to internet; The traffic from
> client is comming from the trust zone via one interface and goes via
> untrust
> interface ;
> NAT is applied from trust to untrust to Nat the source ip addresse of the
> client.  the issue is that some client have a *static public ip address*
> !!!
>
> DIP : 41.16.32.11 -  41.16.32.12
> static range is : 84.16.31.0/29
>
> is there any methode how to stop the NAT for the uses with public ip ???
>
>
> Regards
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>


More information about the juniper-nsp mailing list