[j-nsp] Destination NAT on SRX cluster

Ben Dale bdale at comlinx.com.au
Tue Mar 20 09:06:49 EDT 2012


Hi Leigh, 

On 20/03/2012, at 10:53 PM, Leigh Porter wrote:

> 
> error: The number of destination NAT pools exceeds limit of 0
> [edit security nat destination rule-set incoming-connections rule port-forward then destination-nat]
>  'pool'
>     failed to get pool (wilderness)
> error: configuration check-out failed

It looks like a bug, but try changing the "from interface reth0.352" to "from zone <zone of interface reth0.352>" and see if the issue goes away.  Failing that, upgrade to 11.1R6 and see if that fixes it.

Ben


More information about the juniper-nsp mailing list