SRX

Expand all | Collapse all

Destination-nat question on port mapping

Jump to Best Answer
  • 1.  Destination-nat question on port mapping

    Posted 04-08-2017 23:33

    Hi,

     

    I have a scenarion wherein I need to give access to HP seerver ILO service from the internet.  The ILO runs on port 80 or 443 but once inside the ILO there is a remote console option that uses port 17990.   How can I provide access to all 3 ports from one public IP?



  • 2.  RE: Destination-nat question on port mapping
    Best Answer

     
    Posted 04-09-2017 05:31


  • 3.  RE: Destination-nat question on port mapping

    Posted 04-10-2017 08:32

    I was hoping there was a cleaner and concise way of doing this but I guess I have to configure the pools and rules separately for each port required.  Thanks for the response.



  • 4.  RE: Destination-nat question on port mapping

     
    Posted 04-16-2017 07:58

    If you can dedicate the ip address as a one-to-one nat for a single internal address, then you could use static NAT to forward all ports to that address.

     

    Then you restrict the connections you permit via just the security policies.

     

    See page 13 in the static nat chapter here.

     

    https://kb.juniper.net/library/CUSTOMERSERVICE/technotes/Junos_NAT_Examples.pdf