Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show security nat source pool

Syntax

Description

Display information about the specified Network Address Translation (NAT) source address pool and the configured twin port range per pool.

Options

pool-name

Display source NAT information for the specified address pool.

all

Display information about all source NAT address pools.

logical-system

Display information about the source NAT pools for a specified logical system. Specify all to display information for all logical system.

root-logical-system

Display information about the source NAT pools for the primary (root) logical system.

tenant

Display information about the source NAT pools for a specified tenant system. Specify all to display information for all tenant systems.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show security nat source pool command. Output fields are listed in the approximate order in which they appear.

Table 1: show security nat source pool Output Fields

Field Name

Field Description

Pool name

Name of the source pool.

Description

Description of the source pool.

Pool id

Pool identification number.

Routing Instance

Name of the routing instance.

Host address base

Base address of the original source IP address range.

Port

Port numbers used for the source pool.

Twin port

Upper and lower limits of the twin port.

port overloading

Number of port overloading for the source pool.

Address assignment

Type of address assignment.

Total addresses

Number of IP addresses that are in use.

Starting in Junos OS Release 15.1X49-D90 and Junos OS Release 17.3R1, the total number of addresses for pools with IPv6 prefixes is shown as zero (0).

Translation hits

Number of translation hits.

Port block size

Block size for the deterministic pool.

Last block recycle timeout

Amount of time before the last active block is released.

Interim logging interval

Time interval for which additional system log messages are sent for active blocks and for inactive blocks with existing sessions.

Determ host range num

Host range for the deterministic pool.

Address range

IP address or IP address range for the source pool.

Address-Persistent

Address-persistent information for IPv4 source pools:

  • IPv6 prefix length–Configured IPv6 prefix length.

  • IPv6 subscriber out of port–Number of port allocation failures.

Single Ports

Number of allocated single ports.

Twin Ports

Number of allocated twin ports.

Sample Output

show security nat source pool src_v4_pool-namelength-is-now-changed-upto-63-characters-length

Sample Output

show security nat source pool all (SRX Series devices)

show services nat source pool all (MX-SPC3)

show security nat source pool all tenant

show security nat source pool P_1

show security nat source pool src-nat-v4-with-pat

show security nat source pool (with map-e confidentiality enabled)

show security nat source pool (without map-e confidentiality enabled)

Release Information

Command introduced in Junos OS Release 9.2.

The Description output field added in Junos OS Release 12.1.

The Address assignment output field and IPv6 logical system support added in Junos OS Release 12.1X45-D10.

The twin-port output field added in Junos OS Release 12.1X47-D10.

The Address-persistent output field added in Junos OS Release 12.3X48-D10.

The Last block recycle timeout and Interim logging interval output fields added in Junos OS Release 15.1X49-D60.

The tenant option is introduced in Junos OS Release 18.3R1.