Quantcast
Channel: All SRX Services Gateway posts
Viewing all articles
Browse latest Browse all 17645

Re: [JSRX 210] How to completly remove/delete destination NAT?

$
0
0

tk2 wrote:

I know I can simply rollback to prevoius config, but the thing is, I haven't saved it.


What does this mean? Your config is saved when you commit. You can do a rollback 4 and commit.

 

Otherwise

 

edit security
del zones security-zone trust address-book address companyserver1 y.y.y.y/32
exit

edit security policies from-zone untrust to-zone trust
del policy companyserver1-access match source-address any destination-address [ companyserver1 ] application any
del policy companyserver1-access then permit
exit

edit security nat destination
del pool dst-nat-pool-1 address y.y.y.y port 443
del rule-set rs1 from zone untrust
del rule-set rs1 rule r1 match destination-address x.x.x.x
del rule-set rs1 rule r1 match destination-port 443
del rule-set rs1 rule r1 then destination-nat pool dst-nat-pool-1
exit

edit security nat
del proxy-arp interface ge-0/0/0.0 address x.x.x.x
exit

edit security nat destination
del pool companyserver1-dst-nat-pool-1 address y.y.y.y port 1110
del rule-set rs1 from zone untrust
del rule-set rs1 rule r2 match destination-address x.x.x.x
del rule-set rs1 rule r2 match destination-port 1110
del rule-set rs1 rule r2 then destination-nat pool companyserver1-dst-nat-pool-1

commit

Viewing all articles
Browse latest Browse all 17645

Trending Articles