The following procedures provides various methods that you can use to choose an endpoint as a NAT destination:
View and select the destination endpoint from the complete list of addresses, interfaces, services, zones, routing instances, or ports.
The physical interfaces of an NFX box are mapped to the virtual interfaces of the Gateway Router (GWR) (vSRX) as given in Table 191. These are the default mappings provided by CSO. You may change these interface mappings based on your requirements.
Table 191: NFX and GWR Interface Mapping
NFX Physical Interface | GWR Virtual Interface |
|---|---|
WAN 0 (ge-0/0/10) | ge-0/0/2 |
WAN 1 (ge-0/0/11) | ge-0/0/3 |
WAN 2 (xe-0/0/12) | ge-0/0/7 |
WAN 3 (xe-0/0/13) | ge-0/0/8 |
LAN-X (ge-0/0/X) | Ge-0/0/06.<vlan-id-for-X> |
When you create a new NAT rule and an NFX physical interface is intended as the destination endpoint, select the respective mapped GWR interface.
Enter an abbreviation in the Destination field to select the destination endpoint from a filtered list of destination endpoints.
To view a filtered list of addresses, enter ADDR or addr.
To view a filtered list of interfaces, enter INTR or intr.
To view a filtered list of services, enter SVCS or svcs.
To view a filtered list of zones, enter ZONE or zone.
To view a filtered list of routing instances, enter ROUT or rout.
Click the endpoints in the filtered list to select them.
You can add a port number as a destination endpoint. To do so:
You can also enter a range of ports by using the separator -. For example, you can enter 10-20.
The entered port value is selected as a destination endpoint.
You can also select the endpoint from the complete list of addresses, interfaces, services, zones, and routing instances. See Adding an Endpoint as NAT Destination.
You can select a NAT destination endpoint from the End Points panel. Alternately, you can create a new NAT destination endpoint from the End Points panel, see Creating and Selecting a NAT Destination from the End Points Panel.
To select a NAT destination endpoint from the End Points panel:
The End Points panel appears, displaying the list of available addresses, interfaces, services, zones, and routing instances.
Note You can only edit or view details of a destination endpoint if these options appear on right side of the endpoint when you hover over it. Not all endpoints provide these options.
To create a new destination endpoint from the End Points panel:
Based on the option you select, the respective page appears. Fill in the required details to create a new endpoint.
To create a new address, see Creating Addresses or Address Groups.
To create a new service, see Creating Services and Service Groups.
After the endpoint is created, it appears in the Endpoints panel.
You can use one of the following ways to create a new address from the Destination and use the newly created address as a destination endpoint:
Type the address directly in the Destination field. If the address is valid, it is created immediately and added as a destination endpoint.
Create an address from the Destination field, using the following steps:
The Create Addresses page appears.
The new address is created, and will be listed as an option for the destination. Select the new address to add it to the destination.
To create a new service from the Destination field and use the newly created service as a destination endpoint:
The Create Services page appears.
The new service is created, and will be listed as an option for the destination. Select the new service to add it to the destination.