Hi Hansen,
Delete the destination nat statement that you have configured.
delete security nat destination rule-set dest-nat
copy paste the configuration below: I am hoping 172,27.61.158 belong to Trust zone of Reth2.
proxy arp is needed.
++++++++++++++++++++++
root@Site-A# show security nat destination | display set
set security nat destination pool eon-151 address 10.10.10.151/32
set security nat destination rule-set dest-nat from zone Trust
set security nat destination rule-set dest-nat rule r-eon-158 match destination-address 172.27.61.158/32
set security nat destination rule-set dest-nat rule r-eon-158 then destination-nat pool eon-151
root@Site-A# show security nat destination
pool eon-151 {
address 10.10.10.151/32;
}
rule-set dest-nat {
from zone Trust;
rule r-eon-158 {
match {
destination-address 172.27.61.158/32;
}
then {
destination-nat pool eon-151;
}
}
}
http://www.juniper.net/documentation/en_US/junos12.1/topics/example/nat-security-destination-single-address-translation-configuring.html
Security policy needs to be applied correctly.
Regards
rparthi
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too