Table of Contents
Advertisement
IMPLEMENTATION GUIDE -6rd Configuration Guide
7.9.4 Stateful Firewall Configuration
[edit services]
user@router# show stateful-firewall
rule r1 {
match-direction input-output;
term t1 {
}
}
7.9.5 NAT Configuration
[edit services]
user@router# show nat
pool dslite-pool {
address-range low 33.33.33.1 high 33.33.33.32;
port {
}
}
rule dslite-nat-r1 {
match-direction input;
term dslite-nat-t1 {
}
}
Because of this NAT rule, the following NAT routes are installed for the reverse DS-Lite traffic.
[edit]
user@router# run show route 33.33.33.0/24
inet.0: 48 destinations, 52 routes (47 active, 0 holddown, 1 hidden)
+ = Active Route, - = Last Active, * = Both
33.33.33.1/32
33.33.33.2/31
33.33.33.4/30
33.33.33.8/29
24
then {
accept;
}
automatic;
from {
source-address {
20.20.0.0/16;
}
}
then {
translated {
source-pool dslite-pool;
translation-type {
source dynamic;
}
}
}
*[Static/1] 1w2d 23:08:38
Service to v6rd-dslite-service-set
*[Static/1] 1w2d 23:08:38
Service to v6rd-dslite-service-set
*[Static/1] 1w2d 23:08:38
Service to v6rd-dslite-service-set
*[Static/1] 1w2d 23:08:38
Service to v6rd-dslite-service-set
Copyright © 2011, Juniper Networks, Inc.
Advertisement
Table of Contents
