To configure Network Address Translation (NAT) services, include the nat statement at the [edit services] hierarchy level:
- nat {
-
ipv6-multicast-interfaces (all interface-name);
-
-
pool nat-pool-name {
-
address [ prefix ];
-
address-range [ low minimum-value high maximum-value];
-
- pgcp {
-
hint hint-string;
-
ports-per-session ports;
-
remotely-controlled;
-
transport [ transport-protocol ];
- }
-
-
port (automatic | range low value high value) {
- random-allocation;
- }
- }
-
-
rule rule-name {
-
match-direction (input | output);
-
-
term term-name {
-
nat-type (full-cone | symmetric);
-
-
from {
-
applications [ application-names ];
-
application-sets [ set-names ];
-
destination-address (address | any-unicast) <except>;
-
destination-address-range low minimum-value high maximum-value
- <except>;
-
destination-prefix-list list-name <except>;
-
source-address (address | any-unicast) <except>;
-
source-address-range low minimum-value high maximum-value
- <except>;
-
source-prefix-list list-name <except>;
- }
-
-
then {
-
no-translation;
-
-
translated {
-
destination-pool nat-pool-name;
-
destination-prefix destination-prefix;
-
overload-pool overload-pool-name;
-
overload-prefix overload-prefix;
-
source-pool nat-pool-name;
-
source-prefix source-prefix;
-
translation-type (destination type | source type);
-
-
translation-type {
- source type;
- destination type;
- }
- }
-
syslog;
- }
- }
- }
-
-
rule-set rule-set-name {
- [ rule rule-names ];
- }
- }
This chapter includes the following sections: