Hi everybody,
Please consider the following example:
SRX A must translate all packets destined to 192.168.200.200 with 10.31.254.17 i.e. destination port remains unchanged just destination Ip needs to be replaced.
SRXA:
set security nat destination pool TESTA address 10.31.254.17/32
set security nat destination rule-set DNAT1 from zone untrust
set security nat destination rule-set DNAT1 rule r1 match destination-address 192.168.200.200/32
set security nat destination rule-set DNAT1 rule r1 then destination-nat pool TESTA
Above I am not specifying any destination port, does it mean destination port will remain unchanged as we desired above?
Thanks and have a good day!!