Adding A Rule To A Static Nat Rule Set - Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1 Administration Manual

Network and Security Manager Administration Guide

Adding a Rule to a Static NAT Rule Set

548
The default routing instance (
use this routing instance, if you do not wish to configure anything new.
Other routing instances, if you have added them previously. To add a new
routing instance, use
—Select the zone from the list.
Zone
In general, the list displays the zones configured within a specific device or just
the shared zones depending on whether the
selected (default) or not and can have the following values:
The default zone (
zone, if you do not wish to configure anything new.
Other zones, if you have added them previously. To add a new zone, use
>
Manager Zone Objects
Interface —Select the interface(s) from the list. The interfaces are listed only if
you have imported the device to NSM. Hence, for modeled devices, no interfaces
are listed.
Click OK .
c.
A rule set with the specified name gets created and is displayed in the
window.
The next step is to add rules to the rule set. For more information, see "Adding a Rule to
a Static NAT Rule Set" on page 548.
To add a new rule to a rule set:
From the Static NAT tab, select the rule set to which you want to add the rule.
1.
Click ( ) at the upper left corner of the
+
2.
Select Add Rule to add a new rule to the selected rule set. The
3.
appears.
Here, you must specify a unique name for the rule and set the conditions and the
action to be performed when the traffic matches these conditions, as follows:
Enter a name, which uniquely identifies the rule within the rule set.
a.
Enter a destination address. The traffic from the source is routed to this destination.
b.
Enter an address prefix. Enter the IP address to which the source traffic must be
c.
translated to. As static NAT supports one to one mapping, if your source consists
of a number of hosts, then make sure that you enter an equal number of public IP
addresses in this field.
), which ships with the device. You can
default
Object Manager > Routing Instance Objects
Select From Device
), which ships with the device. You can use this
junos-global
.
tab.
Static NAT
Copyright © 2010, Juniper Networks, Inc.
.
check box is
Object
Security Policy
New Rule dialog box