Source NAT Configuration Page Options

  1. Select Configure>NAT>Source NAT in the J-Web user interface if you are using SRX5400, SRX5600, or SRX5800 platforms.

    Or

    Select Configure>>Security>NAT>Source in the J-Web user interface.

    The Source NAT configuration page appears. Table 190 explains the contents of this page.

  2. Click one:
    • Global Settings—Defines general specifications for source NAT. Enter information as specified in Table 191.
    • Add or +—Adds a new or duplicate Source NAT configuration. Enter information as specified in Table 192.
    • Edit or /—Edits the selected source NAT configuration.
    • Delete or X—Deletes the selected source NAT configuration.
  3. Click one:
    • OK—Saves the configuration and returns to the main configuration page.
    • Commit Options>Commit—Commits the configuration and returns to the main configuration page.
    • Cancel—Cancels your entries and returns to the main configuration page.

Table 190: Source NAT Configuration Page

Field

Function

Source NAT Rule Set

From

Displays the source NAT sort options from which the packets flow.

The options available are:

  • Routing Instance
  • Zone
  • Interface

To

Displays the source NAT sort options to which the packets flow.

The options available are:

  • Routing Instance
  • Zone
  • Interface

Filter

Displays the filter option.

Name

Displays the name of the source NAT rule set.

From

Displays the name of the routing instance/zone/interface from which the packets flow.

To

Displays the name of the routing instance/zone/interface to which the packets flow.

Rule

Displays the name of the rule in the selected source NAT rule set.

Description

Displays a description of the source NAT rule set.

Rules in Selected Rule-Set

Rule Name

Displays the name of the rule in the selected source NAT rule set.

Match Source

Displays the match source address.

Match Destination

Displays the match destination address.

Match IP Protocol

Displays the match IP protocol.

Match Destination Port

Displays the match destination port.

Action

Displays the action of the rule.

Persistent

Displays the persistent NAT address in the source NAT pool

Description

Displays a description of the rule.

Source NAT Pool

Name

Displays the name of the source NAT pool.

Address

Displays the IP address of the source NAT pool.

Port

Displays the port address of the source NAT pool.

Description

Displays a description of the source NAT pool.

Table 191: Source NAT Global Setting Configuration Page

Field

Function

Global Settings

Address Persistent

Provides source address to maintain same translation.

Select check box to the enable address persistence.

Interface Port-Overloading

Specifies interface port overloading for persistent NAT.

Select check box to the enable interface port-overloading.

Port randomization

Specifies source NAT port randomization.

Select check box to the enable port randomization.

Pool Utilization Alarm

Clear Threshold

Specifies clear to clear the threshold for pool utilization.

The default option is 40-100.

Raise Threshold

Specifies raise to raise the threshold for pool utilization.

The default option is 50-100.

Table 192: Add Source NAT Configuration Details

Field FunctionAction
Add Rule Set

Rule Set Name

Specifies the name of the rule set.

Enter the rule set name.

Rule Set Description

Specifies a description for the rule set.

Enter a description for the rule set.

From/To

Specifies the filter option. The options available are:

  • Routing Instance
  • Zone
  • Interface

Select an option.

Select the source routing instances/zones/interfaces in the Available column and the use the right arrow to move them to the Selected column.

Select the destination routing instances/zones/interfaces in the Available column and the use the right arrow to move them to the Selected column.

Add Rule

Rule Name

Specifies the name of the rule.

Enter the rule name.

Rule Description

Specifies a description for the rule.

Enter a description for the rule.

Match

Source Address

Specifies the source IP address. The options available are:

  • Available—Specifies the available source addresses.
  • Selected—Specifies the selected source addresses.

Search and select the source addresses in the Available column and the use the right arrow to move them to the Selected column.

You can also enter a source address in the New text box in the Selected and click Add to add the source address to the lower pane of the Selected column.

Destination Address

Specifies the destination IP address. The options available are:

  • Available—Specifies the available destination addresses.
  • Selected—Specifies the selected destination addresses.

Select the destination addresses in the Available column and the use the right arrow to move them to the Selected column.

You can also enter a destination address in the New text box in the Selected column and click Add to add the destination address to the lower pane of the Selected column.

IP Protocol

Specifies the IP protocol.

Enter the protocol name in the New text box and click Add to add the protocol to the lower pane of the IP Protocol column.

Destination Port

Specifies the destination port options. The options available are:

  • Any
  • Port
  • Port Range

Select an option.

Action

Specifies the action to the taken. The options available are:

  • No Source NAT
  • Do Source NAT with Egress Interface Address
  • Do Source NAT with Pool

Select an option.

Persistent

Specifies the persistent NAT address in the source NAT pool.

Select the check box to enable the following fields:

  • Permit—Select an option.
  • Inactivity Timeout—Enter a value.
  • Max Session Number—Enter a value.
Add Source NAT Pool

Pool Name

Specifies the name of the source NAT pool.

Enter the source NAT pool name.

Pool Description

Specifies a description for the source NAT pool.

Enter a description for the source NAT pool.

Routing Instance

Specifies the routing instances available.

Select an option.

Pool Address Family

Specifies the source NAT pool address family.

Select an option.

Pool Addresses

Specifies the source NAT pool addresses.

Enter the address range in the Address/Range text boxes. Click Add to add the address range to the Addresses column.

Port Translation

Specifies the port translation options. The options available are:

  • No Translation
  • Translation with Default Port Range (1024–65535)
  • Translation with Specified Port Range
  • Translation with Port Overloading Factor

Select an option.

Related Documentation