DNS
The Domain Name System (DNS) ALG handles data associated with locating and
translating domain names into IP addresses. The ALG typically runs on port 53. The ALG
monitors DNS query and reply packets and supports only UDP traffic. The ALG does not
support payload translations. The DNS ALG closes the session only when a reply is
received or an idle timeout is reached.
The following is an example for configuring DNS ALG:
1. Creating NAT interface.
[edit]
services {
service-set set-dns {
nat-rules nat-dns;
interface-service {
service-interface ms-0/2/0;
}
}
2. Configuring NAT pool.
[edit]
services {
nat {
pool p-napt {
address 1.1.1.1/32;
}
}
}
3. Defining NAT rules for DNS ALG.
[edit]
services {
nat {
rule nat-dns {
match-direction input;
term term1 {
from {
source-address {
50.50.50.2/32;
}
applications junos-dns-udp;;
}
then {
translated {
source-pool p-napt;
translation-type {
basic-nat44;
}
}
}
Copyright © 2017, Juniper Networks, Inc.1012
ACX Series Universal Access Router Configuration Guide
To Next Page
Loading...
Need help?
General
