service nat destination rule <rule-number> protocol
Specifies one or more protocols on which NAT destination rule is performed.
- rule-number
- The numeric identifier of a rule. The identifier ranges from 1 through 9999.
- protocol
- A protocol or protocols on which to perform NAT. Any protocol literals or numbers listed in /etc/protocols can be used. Protocols such as TCP, UDP, L2TP, or IPSec ESP can be matched individually.
all: Supported for all protocols.
Configuration mode
service {
nat {
destination {
rule rule-number {
protocol protocol
}
}
}
}
Use care when employing more than one exclusion rule (using the ! symbol), that is, when combining more than one negation operator. NAT rules are evaluated sequentially, and a sequence of exclusion rules could result in unexpected behavior.
Use the set form of this command to specify one or more protocols on which NAT destination rule is performed.
Use the delete form of this command to remove a protocol from a NAT destination rule.
Use the show form of this command to view a protocol for a NAT destination rule.