I follow the guide at https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-nat-static.html
I'm not using address-book. Use the IP instead.
When commit, I got "error: configuration check-out failed"
Below are the current settings:
ge-0/0/1, internet facing, IP:126.96.36.199/27
ge-0/0/2, internal facing, IP:10.10.1.1/24
A FTP server with internal IP:10.10.1.2/24 and prepare to assign 188.8.131.52/27 for its public IP
By following the CLI Quick Configuration in above link. I got below error when commit
[edit security nat proxy-arp interface ge-0/0/1.0]
Proxy ARP IP address range [184.108.40.206 220.127.116.11] overlaps with interface IP address range [18.104.22.168 22.214.171.124] defined on interface 'ge-0/0/1.0'
error: configuration check-out failed
Are you having one FTP server or a subnet of servers?
If it is a single server(10.10.1.2/32) then you need to set the proxy arp for 126.96.36.199/32 (Just one IP) instead of 188.8.131.52/27. Because the latter would mean device is expected to proxy ARP for whole of the subnet which involves the interface IP as well and this is not required.
Thanks pranita. change to /32 can commit sucessfully. I thought that was the mask bits of the subnet.