NAT Policy Rules Main Page Field
Use this page to get an overall, high-level view of your NAT policy rules settings. Details help you keep track of the number and order of rules per policy. You can filter and sort this information to get a better understanding of what you want to view. Table 1 describes the fields on this page.
Table 1: NAT Policy Rules Main Page Field
Unique name for the rule.
Type of the NAT rule such as source, destination, or static.
Displays the source ingress type, For example: zone, interface, or routing instance.
Displays the source address of the NAT policy.
Displays the source port of the NAT policy.
Displays the protocol to permit or deny the traffic.
Displays the destination egress type. For example: zone, interface, or routing interface.
Displays the destination address of the policy.
Displays the destination port of the policy.
Service to permit or deny for the source and destination type NAT rules. This is supported for devices running Junos OS Release 12.1X47.
Translated Packet Source
Source address translated to an IP address for packet matching.
Translated Packet Destination
Destination address translated to an IP address for packet matching.
Description of the NAT rule.
Starting in Junos Space Security Director Release 16.1, the address, service, and NAT pools objects can be created, managed, dragged and dropped to the required rules from the NAT policy rules page. From the Shared Objects list, select Show Addresses, Show Services, or Show Pools to see the required shared objects. To create a new address, service, or NAT pool, click the plus sign (+). You can also modify, delete, and manage these objects. You can search for any object by it’s name and IP address in the search field available in the top right corner.
You can drag more than one object and drop on the respective columns in the policy tabular view. Security Director ensure that objects are dropped in the supported columns and it does not permit to drop under any other columns. The drag and drop of objects is supported on the Source Address, Destination Address, and Service columns. You can drag source or destination NAT pool and drop into source or destination NAT rule. A single or multiple addresses, services, and NAT pools can be dragged and dropped across rules. To view multiple objects in an address, service, or NAT pool column, click the small horizontal triangle to expand the columns.
You can drag and drop the shared objects such as addresses and services to the corresponding cells in the rules grid. You can drag and drop data from source ingress to destination egress and vice versa, source port to destination port and vice versa, and source address to destination address and vice versa. You can also drag and drop the port, address, and protocols across the rules in the grid.