Configure NAT Actions

To configure NAT actions, include the then statement at the [edit services nat rule rule-name term term-name] hierarchy level:

[edit services nat rule rule-name term term-name]

then {

    syslog;

    translated {

        destination-pool nat-pool-name;

        source-pool nat-pool-name;

        translation-type (destination type | source type);

    }

}

To record an alert in the system logging facility, include the syslog statement at the [edit services nat rule rule-name term term-name then] hierarchy level:

[edit services nat rule rule-name term term-name then]

syslog;

To configure NAT-specific actions for handling packets, include the translated statement at the [edit services nat rule rule-name term term-name then] hierarchy level:

[edit services nat rule rule-name term term-name then]

translated {

    destination-pool nat-pool-name;

    source-pool nat-pool-name;

    translation-type (destination type | source type);

}

The source-pool and destination-pool statements specify addressing information you define by including the pool statement at the [edit services nat] hierarchy level; for more information, see Configure Address and Port Information.

The translation-type statement specifies what type of network address translation is used for source or destination traffic:

• destination static—Implement address translation for destination traffic without port mapping. This requires the size of the source address space to be the same as the size of the destination address space. You must specify a destination-pool name. The referenced pool must contain exactly one address and no port configuration.
• source dynamic—Implement address translation for source traffic with port translation (NAPT). You must specify a source-pool name. The referenced pool must include a port configuration.
• source static—Implement address translation for source traffic without port mapping. This requires the size of the source address space to be the same as the size of the destination address space. You must specify a source-pool name. The referenced pool must contain exactly one address and no port configuration.

You can configure either translation-type destination or translation-type source, but not both.

For more information on NAT methods, see RFC 2663, IP Network Address Translator (NAT) Terminology and Considerations.