SRX Services Gateway
Highlighted
SRX Services Gateway

NAT policy for IP and PORT

‎05-14-2018 06:23 AM

Hi guys,

 

in the following source NAT policy what does it means "destination-port 25"? it means"destination port 25 both UDP and TCP protocols"? and if yes, what about if I want to apply the NAT policy only for the TCP protocol?

 

set security nat source rule-set nat_set_333 rule CICCIO_rule_13 match source-address-name s1.1.1.1
set security nat source rule-set nat_set_333 rule CICCIO_rule_13 match destination-address-name s2.2.2.2
set security nat source rule-set nat_set_333 rule CICCIO_rule_13 match destination-port 25
set security nat source rule-set nat_set_333 rule CICCIO_rule_13 then source-nat pool snat-3.3.3.3

1 REPLY 1
Highlighted
SRX Services Gateway

Re: NAT policy for IP and PORT

‎05-14-2018 06:30 PM

Hi,

Yes, you are right. You can use "protocol" option to match tcp traffic or udp traffic or some other protocol.

set security nat source rule-set nat_set_333 rule CICCIO_rule_13 match protocol tcp

 

Thanks,
Nellikka
JNCIE x3 (SEC #321; SP #2839; ENT #790)
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too!!!
Feedback