Will the upgrade to 10.2 fix the issue below?
My current configuration will not allow me to add more rule-sets with the same "from interface fe-0/0/0.0" context.
Current:
destination {
pool RDC-server {
address 192.168.1.203/32 port 3389;
}
rule-set RDC-NAT {
from interface fe-0/0/0.0;
rule RDC-portforward {
match {
destination-address xx.xx.xx.xx/32;
destination-port 3389;
}
then {
destination-nat pool RDC-server;
}
}
}
}
Proposed:
+ rule-set Digium-signal {
+ from interface fe-0/0/0.0;
+ rule Digium-4569 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 4569;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ rule Digium-5060 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 5060;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ }
+ rule-set Digium-access {
+ from interface fe-0/0/0.0;
+ rule Digium-80 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 80;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ rule Digium-443 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 443;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ rule Digium-5222 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 5222;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ rule Digium-843 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 843;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ rule Digium-5269 {
+ match {
+ destination-address xx.xx.xx.xx/32;
+ destination-port 5269;
+ }
+ then {
+ destination-nat pool Digium-server;
+ }
+ }
+ }
Problem:
I receive the following error when I run a commit check:
error: Destination NAT rule-set RDC-NAT and Digium-signal have same context.
[edit security nat destination]
'rule-set Digium-signal'
Destination NAT rule-set(Digium-signal) sanity check failed.
error: Destination NAT rule-set RDC-NAT and Digium-access have same context.
[edit security nat destination]
'rule-set Digium-access'
Destination NAT rule-set(Digium-access) sanity check failed.
error: configuration check-out failed
[edit]