NOTE: When configuring NAT, if any traffic is destined for the following
addresses and does not match a NAT flow or NAT rule, the traffic is dropped:
•
Addresses specified in the source NAT pool when you are using source
translation
Related
Documentation
Network Address Translation Overview on page 999•
• Network Address Port Translation Overview on page 1001
• Enabling Inline Services Interface on ACX Series on page 1008
• Understanding Service Sets on page 1028
• Network Address Translation Address Overload in ACX Series on page 1001
• CoS for NAT Services on ACX Series Universal Access Routers on page 887
• Network Address Translation Constraints on ACX on page 1003
• Configuring Address Pools for Network Address Port Translation (NAPT) Overview on
page 1007
• Network Address Translation Rules Overview on page 1004
Configuring Address Pools for Network Address Port Translation (NAPT) Overview
With Network Address Port Translation (NAPT), you can have up to 4096 network
address or port translations.
The port statement specifies port assignment for the translated addresses. To configure
a specific range of port numbers, include the port range low minimum-value high
maximum-value statement at the [edit services nat pool nat-pool-name] hierarchy level.
Junos OS for ACX Series routers allocates ports sequentially—that is, ACX Series routers
allocate the first available address or port from the NAT pool.
The NAT pool called napt in the following configuration example uses the sequential
implementation:
pool napt {
address-range low 100.0.0.1 high 100.0.0.3;
port {
range low 49160 high 53255;
}
}
•
Endpoint Independent Flow for NAPT on page 1007
Endpoint Independent Flow for NAPT
Endpoint independent flow ensures the assignment of the same external address and
port for all connections from a given host or port to any destination. This means if the
1007Copyright © 2017, Juniper Networks, Inc.
Chapter 31: Configuring Network Address Translation (NAT) and Stateful Firewall Services
To Next Page
Loading...
