Hi,

This is the 9th post in the Quick-Series and this is on SRX-SOURCE-NAT using Pool and address-Persistence.

Requirement

All Lan traffic (172.20.101.0/24) trying to reach to other-end router 11.0.0.2 should be natted to pool of 11.0.0.16/28 address space and make sure host gets the same concurrent address for each session.

address-persistence – https://www.juniper.net/techpubs/software/junos-es/junos-es93/junos-es-swcmdref/address-persistent.html

Topology

1_topology

First let us review what happens without Address-Persistence, the below is the initial zone and interface-config

srx_config_1

srx_1.5_verification_without_per

Now lets enable Address-Persistence

srx_config_2

seeing the verification now

srx_3_verification

This is maintaining a same session IP. I should have also taken an address-persistence table output but overlooked it.

Regards

Rakesh M

Advertisements