Configuring A Nat Pool - Juniper J2300 User Manual
J-series services router
Hide thumbs
Also See for J2300:
- Getting started manual (305 pages) ,
- Quick start quide (26 pages) ,
- Datasheet (2 pages)
Table of Contents
Advertisement
J-series™ Services Router User Guide
Task
Configure the firewall term to accept
only desired traffic.
Create the firewall term to reject all
other traffic.
Configuring a NAT Pool
To hide internal IP addresses from the rest of the Internet, you configure the
local tunnel endpoint as the only address in a Network Address Translation (NAT)
pool, to ensure that it is the address used for address translation.
To configure a NAT pool for IPSec:
1.
2.
3.
4.
494
Configuring an IPSec Tunnel with a Configuration Editor
J-Web Configuration Editor
1.
Click OK to return to the Term
name page, and click Then.
2.
In the Designation field, select
Accept from the drop-down menu,
select the Yes box.
3.
Click OK.
1.
From the top of the configuration
hierarchy, click Services>Stateful
firewall>Rule> rule-name
2.
In the Term field, click Add new
entry.
3.
In the Term name field, type the
name of the term. The name can
be any unique string.
4.
Click Then.
5.
In the Designation field, select
Discard from the drop-down
menu.
Navigate to the top of the configuration hierarchy in either the J-Web or CLI
configuration editor.
Perform the configuration tasks described in Table 191.
If you are finished configuring the network, commit the configuration.
To check the configuration, see "Verifying the IPSec Tunnel Configuration"
on page 496.
CLI Configuration Editor
Set the match action to accept:
set term term-name then accept
1.
From the top of the configuration
hierarchy, enter
edit services stateful-firewall rule
rule-name
2.
Configure a term to discard all
traffic:
set term term-name then discard
- Quick Links:
- User Guide
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
