Table of Contents
Advertisement
CONFIGURE
parameter
primary-if
backup-if
syntax: firewall nat-failover <primary-if> <backup-if>
example:
To add wan2 as the backup interface for wan1, enter:
SR/configure/firewall global> nat-failover wan1 wan2
To remove wan2 as the backup interface for wan1, enter:
SR/configure/firewall global> no nat-failover wan1 wan2
applies to:
All modules
configure firewall policy
Configures a firewall policy for a specific map. Use the no form of the command to delete a
policy from the map.There is a maximum of 1024 policies for a map.
parameter
priority
address
service or the
combination of
protocol and port
numbers
Source and
destination ports
PAT address
traffic
syntax:
180
Avaya Secure Router 3120 Command Reference Guide
The name of the primary interface.
The name of the backup interface for the specified primary interface.
Valid range is from 1 to 1024 which is a unique number for any given
map.
If not specified, then it is taken as any. User is allowed to specify
an IP address with a prefix-length or a range of address or a
predefined address object for source and destination.
If not specified, then it is taken as any protocol for any source and
destination port numbers.
Specified as a single port number or as a range of port numbers.
Specified for the nat-ip parameter, while defining the firewall policy.
Other modes of NAT can be achieved by creating the nat-pool and
later attaching the same to the firewall policy
While configuring firewall policy for a self-traffic, specify self for the
parameter traffic. By default firewall policy is transit.
definition
definition
December 2010
Advertisement
Table of Contents
