Table of Contents
Advertisement
CHAPTER 11
Configuring Junos NAT Policies
Source NAT Policy
Copyright © 2010, Juniper Networks, Inc.
Network address translation (NAT) policies determine how the network address
information within packet headers gets translated. Either or both source and destination
addresses in a packet may be translated. The translation can include IP addresses as
well as port numbers.
The types of NAT policies that are supported on Juniper Networks devices are: Source
NAT policy, Destination NAT policy, and Static NAT policy.
To configure a NAT policy on your network:
Select a policy.
1.
Add a NAT rulebase to this policy.
2.
A rulebase determines the overall direction of the traffic to be processed and consists
of rule sets.
Add a rule set to this NAT rulebase.
3.
A rule set consists of a general set of matching conditions for traffic. If the traffic
matches these conditions, then that traffic is selected for NAT. A rule set can contain
multiple rules.
Add a rule to this rule set.
4.
Rules are part of a NAT rule set and specify the traffic to be matched and the action
to be performed when the traffic matches the rule.
Push this policy on a device that performs the NAT.
5.
This chapter contains the following sections:
Source NAT Policy on page 531
Destination NAT Policy on page 535
Static NAT Policy on page 539
Source NAT policy is used to allow hosts with private IP addresses to access a public
network through the translation of the source IP address within a packet leaving the
Juniper Networks device. For more information on source NAT, see
531
Advertisement
Table of Contents
