Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure central SNAT policies.

  config firewall central-snat-map
      Description: Configure central SNAT policies.
      edit <policyid>
          set status [enable|disable]
          set orig-addr <name1>, <name2>, ...
          set srcintf <name1>, <name2>, ...
          set dst-addr <name1>, <name2>, ...
          set dstintf <name1>, <name2>, ...
          set nat-ippool <name1>, <name2>, ...
          set protocol {integer}
          set orig-port {user}
          set nat-port {user}
          set nat [disable|enable]
          set comments {var-string}
      next
  end

config firewall central-snat-map

Parameter Name Description Type Size
status Enable/disable the active status of this policy.
enable: Enable this policy.
disable: Disable this policy.
option -
orig-addr <name> Original address.
Address name.
string Maximum length: 79
srcintf <name> Source interface name from available interfaces.
Interface name.
string Maximum length: 79
dst-addr <name> Destination address name from available addresses.
Address name.
string Maximum length: 79
dstintf <name> Destination interface name from available interfaces.
Interface name.
string Maximum length: 79
nat-ippool <name> Name of the IP pools to be used to translate addresses from available IP Pools.
IP pool name.
string Maximum length: 79
protocol Integer value for the protocol type (0 - 255). integer Minimum value: 0 Maximum value: 255
orig-port Original TCP port (0 to 65535). user Not Specified
nat-port Translated port or port range (0 to 65535). user Not Specified
nat Enable/disable source NAT.
disable: Disable source NAT.
enable: Enable source NAT.
option -
comments Comment. var-string Maximum length: 1023

Configure central SNAT policies.

  config firewall central-snat-map
      Description: Configure central SNAT policies.
      edit <policyid>
          set status [enable|disable]
          set orig-addr <name1>, <name2>, ...
          set srcintf <name1>, <name2>, ...
          set dst-addr <name1>, <name2>, ...
          set dstintf <name1>, <name2>, ...
          set nat-ippool <name1>, <name2>, ...
          set protocol {integer}
          set orig-port {user}
          set nat-port {user}
          set nat [disable|enable]
          set comments {var-string}
      next
  end

config firewall central-snat-map

Parameter Name Description Type Size
status Enable/disable the active status of this policy.
enable: Enable this policy.
disable: Disable this policy.
option -
orig-addr <name> Original address.
Address name.
string Maximum length: 79
srcintf <name> Source interface name from available interfaces.
Interface name.
string Maximum length: 79
dst-addr <name> Destination address name from available addresses.
Address name.
string Maximum length: 79
dstintf <name> Destination interface name from available interfaces.
Interface name.
string Maximum length: 79
nat-ippool <name> Name of the IP pools to be used to translate addresses from available IP Pools.
IP pool name.
string Maximum length: 79
protocol Integer value for the protocol type (0 - 255). integer Minimum value: 0 Maximum value: 255
orig-port Original TCP port (0 to 65535). user Not Specified
nat-port Translated port or port range (0 to 65535). user Not Specified
nat Enable/disable source NAT.
disable: Disable source NAT.
enable: Enable source NAT.
option -
comments Comment. var-string Maximum length: 1023