Uploaded image for project: 'CloudStack'
  1. CloudStack
  2. CLOUDSTACK-10003

automatic configure juniper srx/vsrx nat loopback

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 4.8.0, 4.9.0, 4.10.0.0, 4.8.1.1, 4.9.0.1
    • 4.8.0, 4.9.0, 4.10.0.0, 4.8.1.1, 4.9.0.1
    • Automation
    • Security Level: Public (Anyone can view this level - this is the default.)
    • None
    • network-pluge juniper srx

    Description

      automatic configure juniper srx/vsrx nat loopback,

      constraint condition that manual configure source nat in juniper srx,allowed vm vist public network :
      zone : trust to

      {trust,untrust}

      rule : source address

      {0.0.0.0/0},destination address{0.0.0.0/0}

      ,do source nat with pool

      {public network getway ip}

      .

      code change for trust to trust destination or static nat:

      add srxCommand :CHECK_PRIVATE_IF_EXISTS. for add/delete rule to detect whether exist or not contain DestinationNatRule or StaticNatRule (ruleName_private) in trust zone .
      add DestinationNatRule (ruleName_private) to trust zone when ADD DestinationNatRule to untrust .
      delete DestinationNatRule (ruleName_private) from trust zone when DELETE DestinationNatRule from untrust.
      add StaticNatRule (ruleName_private) to trust zone when ADD StaticNatRule to untrust .
      delete StaticNatRule (ruleName_private) from trust zone when DELETE StaticNatRule from untrust.

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #2184

          Activity

            People

              Unassigned Unassigned
              ming-416 ming
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: