Fortinet black logo

CLI Reference

config firewall central-snat-map

config firewall central-snat-map

Configure central SNAT policies.

config firewall central-snat-map

Description: Configure central SNAT policies.

edit <policyid>

set status [enable|disable]

set orig-addr <name1>, <name2>, ...

set srcintf <name1>, <name2>, ...

set dst-addr <name1>, <name2>, ...

set dstintf <name1>, <name2>, ...

set nat-ippool <name1>, <name2>, ...

set protocol {integer}

set orig-port {user}

set nat-port {user}

set nat [disable|enable]

set comments {var-string}

next

end

config firewall central-snat-map

Parameter

Description

Type

Size

status

Enable/disable the active status of this policy.

option

-

Option

Description

enable

Enable this policy.

disable

Disable this policy.

orig-addr <name>

Original address.

Address name.

string

Maximum length: 79

srcintf <name>

Source interface name from available interfaces.

Interface name.

string

Maximum length: 79

dst-addr <name>

Destination address name from available addresses.

Address name.

string

Maximum length: 79

dstintf <name>

Destination interface name from available interfaces.

Interface name.

string

Maximum length: 79

nat-ippool <name>

Name of the IP pools to be used to translate addresses from available IP Pools.

IP pool name.

string

Maximum length: 79

protocol

Integer value for the protocol type .

integer

Minimum value: 0 Maximum value: 255

orig-port

Original TCP port (0 to 65535).

user

Not Specified

nat-port

Translated port or port range (0 to 65535).

user

Not Specified

nat

Enable/disable source NAT.

option

-

Option

Description

disable

Disable source NAT.

enable

Enable source NAT.

comments

Comment.

var-string

Maximum length: 1023

config firewall central-snat-map

Configure central SNAT policies.

config firewall central-snat-map

Description: Configure central SNAT policies.

edit <policyid>

set status [enable|disable]

set orig-addr <name1>, <name2>, ...

set srcintf <name1>, <name2>, ...

set dst-addr <name1>, <name2>, ...

set dstintf <name1>, <name2>, ...

set nat-ippool <name1>, <name2>, ...

set protocol {integer}

set orig-port {user}

set nat-port {user}

set nat [disable|enable]

set comments {var-string}

next

end

config firewall central-snat-map

Parameter

Description

Type

Size

status

Enable/disable the active status of this policy.

option

-

Option

Description

enable

Enable this policy.

disable

Disable this policy.

orig-addr <name>

Original address.

Address name.

string

Maximum length: 79

srcintf <name>

Source interface name from available interfaces.

Interface name.

string

Maximum length: 79

dst-addr <name>

Destination address name from available addresses.

Address name.

string

Maximum length: 79

dstintf <name>

Destination interface name from available interfaces.

Interface name.

string

Maximum length: 79

nat-ippool <name>

Name of the IP pools to be used to translate addresses from available IP Pools.

IP pool name.

string

Maximum length: 79

protocol

Integer value for the protocol type .

integer

Minimum value: 0 Maximum value: 255

orig-port

Original TCP port (0 to 65535).

user

Not Specified

nat-port

Translated port or port range (0 to 65535).

user

Not Specified

nat

Enable/disable source NAT.

option

-

Option

Description

disable

Disable source NAT.

enable

Enable source NAT.

comments

Comment.

var-string

Maximum length: 1023