Hello,
I'd like ton create a source NAT config that use another IP than the interface IP. Is it possible to do so?
Local LAN (192.168.1.0/24) ----- SRX (1.1.1.1/24) ------- Internet
Is it possible to NAT the Local LAN with IP 1.1.1.2 for example?
set security nat source pool MyPool address 1.1.1.2/32 to 1.1.1.2/32
set security nat source rule-set RL1 from zone trust
set security nat source rule-set RL1 to zone untrust
set security nat source rule-set RL1 rule NATLAN match source-address 192.168.1.0/24
set security nat source rule-set RL1 rule NATLAN then source-nat pool MyPool
does this looks corect?
do I need Proxy ARP as well on the external interface?
Thank you
#NAT#proxy.arp