hey all, cant seem to get static translation to work.
basically, we want to NAT public IP 1.1.1.10 to private IP 10.10.10.10.
the public ip on the SSG is 1.1.1.1/24.
10.10.10.10 should use 1.1.1.10 on all outbound traffic and all allowed inbound traffic from the internet should be forwarded to 10.10.10.10.
configs are below (bgroup0 is the interface on the internal trust zone)
!
set address "Trust" "1.1.1.10" 1.1.1.10 255.255.255.255 "TEST"
set service "TEST" tcp src-port 0-65535 dst-port 23-23
set policy id 11 name "MAS90" from "Untrust" to "Trust" "Any" "1.1.1.10" "TEST" nat dst ip 10.10.10.10 permit log
set policy id 11
set route 1.1.1.10/32 interface bgroup0
set route 1.1.1.10/32 interface bgroup0
any help would be appreciated.