For When You Can't Have The Real Thing
[ start | index | login ]
start > Juniper > SRX210 > Source Interface NAT

Source Interface NAT

Created by dave. Last edited by dave, 9 years and 20 days ago. Viewed 3,790 times. #2
[diff] [history] [edit] [rdf]
labels
attachments
(2015-03-10)

If traffic is going from trust to the vpn zone, and that traffic matches the rule supplied, then NAT the outbound traffic to the interface's IP.

set security nat source rule-set example-nat from zone trust
set security nat source rule-set example-nat to zone vpn
set security nat source rule-set example-nat rule example-nat-rule match source-address 172.16.0.0/16
set security nat source rule-set example-nat rule example-nat-rule match destination-address 192.168.200.0/24
set security nat source rule-set example-nat rule example-nat-rule then source-nat interface
no comments | post comment
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.

Useful:


snipsnap.org | Copyright 2000-2002 Matthias L. Jugel and Stephan J. Schmidt