Commands in the JUNOSe Command Reference

[Contents] [Prev] [Next] [Report an Error] [No Frames]

JUNOSe 7.0.4 Release Notes > PPTP and GRE Tunneling Through NAT > Commands in the JUNOSe Command Reference
Commands in the JUNOSe Command Reference
This section presents commands that have been modified for this release and are relevant to features that are presented in this release.

ip nat translation

Description:
Changes or disables translation timeouts, per virtual router, for existing and newly created translations in the translation table. All timeouts for this command support a range of 1-2147483 seconds (about 25 days). The no version enables the timer using its default value.

NOTE: GRE translations are used as optimizations to discard GRE traffic. You can use the gre-timeout keyword to control GRE aging timeout, even though we do not support NAPT for GRE. The GRE aging timer has no effect on any simple translations GRE might use.

Syntax:
ip nat translation { timeout | udp-timeout | dns-timeout | tcp-timeout | finrst-timeout |
icmp-timeout | gre-timeout } seconds
no ip nat translation { timeout | udp-timeout | dns-timeout | tcp-timeout | finrst-timeout |
icmp-timeout | gre-timeout}

timeout—Sets aging time for dynamic translations (except for overloaded translations); default value is 86400 seconds (24 hours)

udp-timeout—Sets aging time for UDP protocol translations; default value is 300 seconds (5 minutes)

dns-timeout—Sets aging time for DNS protocol translations (port 53 on TCP or UDP); default value is 60 seconds

tcp-timeout—Sets aging time for TCP protocol translations; default value is 86400 seconds (24 hours)

first-timeout—Sets aging time for TCP connections terminated with RST or FIN flags; default value is 60 seconds

icmp-timeout—Sets aging time for ICMP protocol translations; default value is 300 seconds (5 minutes)

gre-timeout—Sets aging time for GRE protocol translations; default value is 300 seconds (5 minutes)

seconds—Number of seconds before the router removes an unused NAT table entry

Mode(s):
Global Configuration
clear ip nat translation

Description:
Clears all or the specified NAT table entries. There is no no version.
Syntax:
clear ip nat translation *
clear ip nat translation inside insideGlobalIpAddress insideLocalIpAddress

clear ip nat translation outside outsideLocalIpAddress outsideGlobalIpAddress

clear ip nat translation { tcp | udp | icmp}
inside insideGlobalIpAddress insideGlobalPort insideLocalIpAddress insideLocalPort

clear ip nat translation { tcp | udp | icmp | gre }
inside insideGlobalIpAddress * insideLocalIpAddress *

clear ip nat translation { tcp | udp | icmp }
inside insideGlobalIpAddress insideGlobalPort insideLocalIpAddress insideLocalPort
outside outsideLocalIpAddress outsideLocalPort outsideGlobalIpAddress outsideGlobalPort

*—Clears all translations when used in the clear ip nat translation command

*—Matches any global or local port to remove inside source extended TCP, UDP, ICMP or GRE translations for the specified global IP address and local IP address when used in the clear ip nat translation { tcp | udp | icmp | gre } inside insideGlobalIpAddress * insideLocalIpAddress * command

inside—Specifies an inside address

insideGlobalIpAddress—Inside global IP address

insideLocalIpAddress—Inside local IP address

outside—Specifies an outside address

outsideLocalIpAddress—Outside local IP address

outsideGlobalIpAddress—Outside global IP address

tcp—Specifies a TCP port translation

udp—Specifies a UDP port translation

icmp—Specifies an ICMP port translation

gre—Specifies a GRE translation

insideGlobalPort—Inside global port number

insideLocalPort—Inside local port number

outsideGlobalPort—Outside global port number

outsideLocalPort—Outside local port number

Mode(s):
Privileged Exec
show ip nat translations

Description:
Displays translations that reside in the NAT translation table.
Syntax:
show ip nat translations [ static | dynamic ] [ tcp | udp | icmp | gre ]* [ verbose ]
[ filter ]
show ip nat translations inside insideLocalIpAddress [ localPort ]
[ insideGlobalIpAddress [ globalPort ] ] [ verbose ] [ filter ]

show ip nat translations outside outsideGlobalIpAddress [ globalPort ]
[ outsideLocalIpAddress [ localPort ] ] [ verbose ] [ filter ]

static—Displays static translations

dynamic—Displays dynamic translations

tcp—Displays TCP port translations

udp—Displays UDP port translations

icmp—Displays ICMP port translations

gre—Displays GRE translations

*—Indicates that one or more parameters can be repeated multiple times in a list in the command line

inside—Specifies an inside address

insideGlobalIpAddress—Inside global IP address

insideLocalIpAddress—Inside local IP address

outside—Specifies an outside address

outsideLocalIpAddress—Inside local IP address

outsideGlobalIpAddress—Inside global IP address

localPort—Local port value

globalPort—Global port value

verbose—Additionally displays the time since creation and time since last use for each translation entry

filter—See Filtering show Commands in About This Guide

Mode(s):
User Exec

[Contents] [Prev] [Next] [Report an Error] [No Frames]