SRX Services Gateway
Highlighted
SRX Services Gateway

route internal subnet using non primary WAN IP address

[ Edited ]
‎09-06-2016 11:02 PM

Hi guys

 

Im trying to send traffic from an internal subnet to use the non primary ip address (222.333.19.65) as the public ip

 

show interfaces pp0 unit 0
...
family inet {
        address 222.111.19.62/32 {
            destination 222.111.19.61;
            primary;
        }
        address 222.333.19.65/28;
        address 222.333.19.66/28;
        address 222.333.19.67/28;
        ...
    }

Currently all traffic on 192.168.1.0/24 is routed out using the default route which shows 222.111.19.62 as the public ip

 

 

route 0.0.0.0/0 next-hop pp0.0;

 

 

I would like to route the internal subnet 192.168.2.0/24 to use the 222.333.19.65 IP address publicly. Can you suggest how i would do this?

1 REPLY 1
Highlighted
SRX Services Gateway

Re: route internal subnet using non primary WAN IP address

‎09-07-2016 12:37 AM

Hi, 

 

Seems you are referring to source nat. You could configure a nat pool with that address. Example:

set security nat source pool test address x.x.x.x/x
set security nat source rule-set snat from zone trust
set security nat source rule-set snat to zone untrust
set security nat source rule-set snat rule 1 match source-address 192.168.2.0/24
set security nat source rule-set snat rule 1 then source-nat pool test
set security nat proxy-arp interface pp0.0 address x.x.x.x/x

The nat pool IP x.x.x.x has to be routed to this ppp0 WAN IP by the ISP.

 

Cheers,

Ashvin

Feedback