Migrate to Static NAT from a PAT



  • I am new to Junos so please forgive me. Obviously the real IPs aren’t shown:

    I have an internal server (IP 1.1.1.1) behind a PAT. (55.55.55.55). I would like to change it from a PAT’d IP to an external static NAT (55.55.55.4) since people want to get to the specific server for resources.

    Here is the config right now:

    set interface ethernet0/3 ip 55.55.55.55/27
    set interface ethernet0/3 route

    set interface ethernet0/3 vip 55.55.55.4 25 “SMTP” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 443 “HTTPS” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 900 “OUTLOOK-MOBILE” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 80 “HTTP” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 110 “POP3” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 143 “IMAP” 1.1.1.1 manual
    set interface ethernet0/3 vip 55.55.55.4 + 3389 “RDP” 1.1.1.1 manual

    The Server is going out on the right IP I would like (55.55.55.4) but when someone tries to reach it, it says its coming back in on the PAT that I don’t want (55.55.55.55)

    Thank you in advance for your help.



  • you may create a DIP on interface eth0/3 with address 55.55.55.4
    And make a policy from trust “host 1.1.1.1” to untrust “any” with advanced policy setting : check “source Translation” and select “Dip on” 55.55.55.4-55.55.55.4/port-xlate.

    In this case all traffic from your server go out with address 55.55.55.4


 

51
Online

38.4k
Users

12.7k
Topics

44.5k
Posts