[j-nsp] Destination NAT on SRX cluster
Ben Dale
bdale at comlinx.com.au
Tue Mar 20 09:06:49 EDT 2012
Hi Leigh,
On 20/03/2012, at 10:53 PM, Leigh Porter wrote:
>
> error: The number of destination NAT pools exceeds limit of 0
> [edit security nat destination rule-set incoming-connections rule port-forward then destination-nat]
> 'pool'
> failed to get pool (wilderness)
> error: configuration check-out failed
It looks like a bug, but try changing the "from interface reth0.352" to "from zone <zone of interface reth0.352>" and see if the issue goes away. Failing that, upgrade to 11.1R6 and see if that fixes it.
Ben
More information about the juniper-nsp
mailing list