I follow the guide at https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-nat-static.html
I'm not using address-book. Use the IP instead.
When commit, I got "error: configuration check-out failed"
Below are the current settings:
ge-0/0/1, internet facing, IP:18.104.22.168/27
ge-0/0/2, internal facing, IP:10.10.1.1/24
A FTP server with internal IP:10.10.1.2/24 and prepare to assign 22.214.171.124/27 for its public IP
By following the CLI Quick Configuration in above link. I got below error when commit
[edit security nat proxy-arp interface ge-0/0/1.0]
Proxy ARP IP address range [126.96.36.199 188.8.131.52] overlaps with interface IP address range [184.108.40.206 220.127.116.11] defined on interface 'ge-0/0/1.0'
error: configuration check-out failed
Are you having one FTP server or a subnet of servers?
If it is a single server(10.10.1.2/32) then you need to set the proxy arp for 18.104.22.168/32 (Just one IP) instead of 22.214.171.124/27. Because the latter would mean device is expected to proxy ARP for whole of the subnet which involves the interface IP as well and this is not required.
Thanks pranita. change to /32 can commit sucessfully. I thought that was the mask bits of the subnet.