show security nat source summary
Syntax
show security nat source summary logical-system (logical-system-name ) root-logical-system tenant (tenant-name )
Description
Display a summary of Network Address Translation (NAT) source information.
Options
| none | Display summary source NAT information. |
| logical-system | Display
summary information about the source NAT for a specified logical system.
Specify |
| root-logical-system | Display summary information about the source NAT for the primary (root) logical system. |
| tenant | Display summary
information about the source NAT for a specified tenant system. Specify |
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show security nat source summary command. Output fields are listed in the approximate order in which they appear.
Field Name |
Field Description |
|---|---|
Total source nat pool number |
Number of source NAT pools. |
Pool name |
Name of the source address pool. |
Address range |
IP address or IP address range for the pool. |
Routing Instance |
Name of the routing instance. |
PAT |
Whether Port Address Translation (PAT) is enabled (yes or no). |
Total Address |
Number of IP addresses that are in use. Starting in Junos OS Release 12.3X48-D55, and Junos OS Release 15.1X49-D90, and Junos OS Release 17.3R1, the total number of addresses that are in use for pools with IPv6 prefixes is shown as zero (0). |
Total source nat rule number |
Number of source NAT rules. |
Total port number usage for port translation pool |
Number of ports assigned to the pool. |
Maximum port number for port translation pool |
Maximum number of NAT or PAT transactions done at any given time. |
Sample Output
show security nat source summary
user@host> show security nat source summary logical-system all
Logical system: root-logical-system
Total port number usage for port translation pool: 67108864
Maximum port number for port translation pool: 134217728
Logical system: lsys1
Total port number usage for port translation pool: 193536
Maximum port number for port translation pool: 134217728
Total pools: 2
Logical system: root-logical-system
Pool Address Routing PAT Total
Name Range Instance Address
pool1 10.1.1.0-10.1.4.255- default yes 2048
10.1.5.0-10.1.8.255
Logical system: lsys1
Pool Address Routing PAT Total
Name Range Instance Address
pool2 203.0.203.1-203.0.203.3 default yes 3
Total rules: 1
Logical system: root-logical-system
Rule name Rule set From To Action
rule 1 ruleset1 ge-2/2/2.0 ge-2/2/3.0 pool1
rule 1 ge-2/2/4.0 ge-2/2/5.0
show security nat source summary tenant
user@host> show security nat source summary tenant tn1
Total port number usage for port translation pool: 1548288
Maximum port number for port translation pool: 268435456
Total pools: 1
Pool Address Routing PAT Total
Name Range Instance Address
pat 192.0.2.1-192.0.2.24 default yes 24
Total rules: 1
Rule name Rule set From To Action
r1 from_intf ge-0/0/0.0 ge-0/0/1.0 pat
show security nat source summary (SRX Series Firewalls)
user@host> show security nat source summary
Total port number usage for port translation pool: 4128768
Maximum port number for port translation pool: 50331648
Total pools: 1
Pool Address Routing PAT Total
Name Range Instance Address
src_v4_pool-namelength-is-now-changed-upto-63-characters-length 192.0.2.1-192.0.2.1
- 192.0.2.2-192.0.2.2
- 192.0.2.3-192.0.2.3
- 192.0.2.4-192.0.2.4
- 192.0.2.5-192.0.2.5
- 192.0.2.6-192.0.2.6
- 192.0.2.7-192.0.2.7
- 192.0.2.8-192.0.2.8
- 192.0.2.9-192.0.2.9
- 192.0.2.10-192.0.2.10
- 192.0.2.11-192.0.2.11
- 192.0.2.12-192.0.2.12
- 192.0.2.13-192.0.2.13
- 192.0.2.14-192.0.2.14
- 192.0.2.15-192.0.2.15
- 192.0.2.16-192.0.2.16
- 192.0.2.17-192.0.2.17
- 192.0.2.18-192.0.2.18
- 192.0.2.19-192.0.2.19
- 192.0.2.20-192.0.2.20
- 192.0.2.21-192.0.2.21
- 192.0.2.22-192.0.2.22
- 192.0.2.23-192.0.2.23
- 192.0.2.24-192.0.2.24
- 192.0.2.25-192.0.2.25
- 192.0.2.26-192.0.2.26
- 192.0.2.27-192.0.2.27
- 192.0.2.28-192.0.2.28
- 192.0.2.29-192.0.2.29
- 192.0.2.30-192.0.2.30
- 192.0.2.31-192.0.2.31
- 192.0.2.32-192.0.2.32
- 192.0.2.33-192.0.2.33
- 192.0.2.34-192.0.2.34
- 192.0.2.35-192.0.2.35
- 192.0.2.36-192.0.2.36
- 192.0.2.37-192.0.2.37
- 192.0.2.38-192.0.2.38
- 192.0.2.39-192.0.2.39
- 192.0.2.40-192.0.2.40
- 192.0.2.41-192.0.2.41
- 192.0.2.42-192.0.2.42
- 192.0.2.43-192.0.2.43
- 192.0.2.44-192.0.2.44
- 192.0.2.45-192.0.2.45
- 192.0.2.46-192.0.2.46
- 192.0.2.47-192.0.2.47
- 192.0.2.48-192.0.2.48
- 192.0.2.49-192.0.2.49
- 192.0.2.50-192.0.2.50
- 192.0.2.51-192.0.2.51
- 192.0.2.52-192.0.2.52
- 192.0.2.53-192.0.2.53
- 192.0.2.54-192.0.2.54
- 192.0.2.55-192.0.2.55
- 192.0.2.56-192.0.2.56
- 192.0.2.57-192.0.2.57
- 192.0.2.58-192.0.2.58
- 192.0.2.59-192.0.2.59
- 192.0.2.60-192.0.2.60
- 192.0.2.61-192.0.2.61
- 192.0.2.62-192.0.2.62
- 192.0.2.63-192.0.2.63
- 192.0.2.64-192.0.2.64 default yes 64
Total rules: 1
Rule name : rule_namelength_is_now_changed_upto_63_characters_length
Rule set : ruleset_namelength_now_changed_upto_63_characters_length
Action : src_v4_pool-namelength-is-now-changed-upto-63-characters-length
From : trust To : untrust
show services nat source summary
user@host> show services nat source summary
Total port number usage for port translation pool: 128
Maximum port number for port translation pool: 2576980378
Total pools: 1
Interface: vms-4/0/0 , Service set: ss1
Pool Name Address Range PAT Total Address
NAT_POOL1--WEB-MX-SPC3NAT_WEB_MX_SPC3NAT_web-mx--spc3_NAT-POOL 203.1.1.0-203.1.1.0
- 203.2.1.0-203.2.1.0
- 203.3.1.0-203.3.1.0
- 203.4.1.0-203.4.1.0
- 203.5.1.0-203.5.1.0
- 203.6.1.0-203.6.1.0
- 203.7.1.0-203.7.1.0
- 203.8.1.0-203.8.1.0
- 203.9.1.0-203.9.1.0
- 203.10.1.0-203.10.1.0
- 203.11.1.0-203.11.1.0
- 203.12.1.0-203.12.1.0
- 203.13.1.0-203.13.1.0
- 203.14.1.0-203.14.1.0
- 203.15.1.0-203.15.1.0
- 203.16.1.0-203.16.1.0
- 203.17.1.0-203.17.1.0
- 203.18.1.0-203.18.1.0
- 203.19.1.0-203.19.1.0
- 203.20.1.0-203.20.1.0
- 203.21.1.0-203.21.1.0
- 203.22.1.0-203.22.1.0
- 203.23.1.0-203.23.1.0
- 203.24.1.0-203.24.1.0
- 203.25.1.0-203.25.1.0
- 203.26.1.0-203.26.1.0
- 203.27.1.0-203.27.1.0
- 203.28.1.0-203.28.1.0
- 203.29.1.0-203.29.1.0
- 203.30.1.0-203.30.1.0
- 203.31.1.0-203.31.1.0
- 203.32.1.0-203.32.1.0
- 203.33.1.0-203.33.1.0
- 203.34.1.0-203.34.1.0
- 203.35.1.0-203.35.1.0
- 203.36.1.0-203.36.1.0
- 203.37.1.0-203.37.1.0
- 203.38.1.0-203.38.1.0
- 203.39.1.0-203.39.1.0
- 203.40.1.0-203.40.1.0
- 203.41.1.0-203.41.1.0
- 203.42.1.0-203.42.1.0
- 203.43.1.0-203.43.1.0
- 203.44.1.0-203.44.1.0
- 203.45.1.0-203.45.1.0
- 203.46.1.0-203.46.1.0
- 203.47.1.0-203.47.1.0
- 203.48.1.0-203.48.1.0
- 203.49.1.0-203.49.1.0
- 203.50.1.0-203.50.1.0
- 203.51.1.0-203.51.1.0
- 203.52.1.0-203.52.1.0
- 203.53.1.0-203.53.1.0
- 203.54.1.0-203.54.1.0
- 203.55.1.0-203.55.1.0
- 203.56.1.0-203.56.1.0
- 203.57.1.0-203.57.1.0
- 203.58.1.0-203.58.1.0
- 203.59.1.0-203.59.1.0
- 203.60.1.0-203.60.1.0
- 203.61.1.0-203.61.1.0
- 203.62.1.0-203.62.1.0
- 203.63.1.0-203.63.1.0
- 203.64.1.0-203.64.1.0 yes 64
Total rules: 1
Interface: vms-4/0/0 , Service set: ss1
Rule name : NAT_RULE1--WEB-MX-SPC3NAT_WEB_MX_SPC3NAT_web-mx--spc3_NAT-RULE
Rule set : NAT_RULE-SET1--WEB-MX-SPC3NAT_WEB_MX_SPC3NAT_web-mx--spc3_RSET
Action : NAT_POOL1--WEB-MX-SPC3NAT_WEB_MX_SPC3NAT_web-mx--spc3_NAT-POOL
Release Information
Command introduced in Junos OS Release 9.2.
Support for IPv6 logical systems added in Junos OS Release 12.1X45-D10.
The tenant option is introduced in Junos OS Release 18.3R1.
Change History Table
Feature support is determined by the platform and release you are using. Use Feature Explorer to determine if a feature is supported on your platform.