pool (Security Source NAT)
Syntax
pool pool-name {
address ip-address {
to ip-address;
}
burst-pool burst-pool-name;
address-persistent subscriber ipv6-prefix-length prefix-length;
address-pooling (paired | no-paired);
address-shared;
description text;
host-address-base ip-address;
overflow-pool (interface | pool-name);
pool-utilization-alarm (clear-threshold value | raise-threshold value);
port (no-translation | port-overloading-factor number | preserve-range | enhanced-port-overloading-algorithm | range port-low (to port-high));
routing-instance routing-instance-name;
}
Hierarchy Level
[edit security nat source]
Description
Define a source NAT pool to identify the pool uniquely.
Options
| pool-name |
Name of the pool. |
| description |
Description of the pool. |
| enhanced-port-overloading-algorithm | The hash algorithm uses destination IP and port to calculate the port overloading index. |
| preserve-range | Assign a port within the same range as the incoming port—either 0 through 1023 or 1024 through 65,535. You cannot configure the preserve range option with port no-translation and secure port block allocation. |
| burst-pool | Burst mode allows you to use the ports beyond the allocated port blocks. |
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement modified in Junos OS Release 9.6. The description option
added in Junos OS Release 12.1. Statement modified in Junos OS Release 12.1X45-D10.
Statement modified in Junos OS Release 12.3X48-D10. The
enhanced-port-overloading-algorithm and
preserve-range option added in Junos OS Release 22.4R1.
burst-pool option added in Junos OS Release 23.4R1.