Message Image

Skip main navigation (Press Enter).

SRX

last person joined: yesterday

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

NAT address exported to BGP

Jump to Best Answer

Kalle09-21-2009 05:45

Hi, I have setup source based NAT in a SRX. The NAT address must be exported to BGP. Has somebody ...

Erdem09-21-2009 05:51Best Answer

Hi, let us assume your address is 2.2.2.2. If this address already exists in your routing table ...

1. NAT address exported to BGP

0 Recommend
Kalle
Posted 09-21-2009 05:45

Reply Reply Privately
Hi,
I have setup source based NAT in a SRX.
The NAT address must be exported to BGP.
Has somebody any tips how the policy should look like?

BR Niklas
2. RE: NAT address exported to BGP
Best Answer

1 Recommend
Erdem
Posted 09-21-2009 05:51

Reply Reply Privately
Hi,

let us assume your address is 2.2.2.2. If this address already exists in your routing table (check with show route 2.2.2.2) then you write following policy and apply it under "protocols bgp group NAME export export-nat":

xlab@mexico# show policy-options
policy-statement export-nat {
    term nat {
        from {
            route-filter 2.2.2.2/32 exact;
        }
        then accept;
    }
}

If this route does not exist then define a static route with next-hop reject:
xlab@mexico# set routing-options static route 2.2.2.2 reject

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.

Kind Regards
Michael Pergament

Powered by Higher Logic