Fortinet white logo
Fortinet white logo

CLI Reference

config firewall central-snat-map

config firewall central-snat-map

Configure central SNAT policies.

config firewall central-snat-map
    Description: Configure central SNAT policies.
    edit <policyid>
        set status [enable|disable]
        set action [bypass|masquerade|...]
        set ipv6 [enable|disable]
        set srcintf {string}
        set dstintf {string}
        set src-addr <name1>, <name2>, ...
        set src-addr6 <name1>, <name2>, ...
        set dst-addr <name1>, <name2>, ...
        set dst-addr6 <name1>, <name2>, ...
        set nat-ippool <name1>, <name2>, ...
        set nat-ippool6 <name1>, <name2>, ...
    next
end

config firewall central-snat-map

Parameter

Description

Type

Size

Default

policyid

Policy ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

status

Enable/disable the active status of this policy.

option

-

enable

Option

Description

enable

Enable this policy.

disable

Disable this policy.

action

central SNAT action.

option

-

masquerade

Option

Description

bypass

Bypass and do not perform NAT.

masquerade

NAT using the primary IP of destination interface.

ippool

NAT using ip pool.

ipv6

Enable/disable IPv6.

option

-

disable

Option

Description

enable

Enable ipv6.

disable

Disable ipv6.

srcintf

Source interface name from available interfaces.

string

Maximum length: 35

dstintf

Destination interface name from available interfaces.

string

Maximum length: 35

src-addr <name>

IPv4 Original address.

Address name.

string

Maximum length: 79

src-addr6 <name>

IPv6 Original address.

Address name.

string

Maximum length: 79

dst-addr <name>

IPv4 Destination address.

Address name.

string

Maximum length: 79

dst-addr6 <name>

IPv6 Destination address.

Address name.

string

Maximum length: 79

nat-ippool <name>

Name of the IP pools to be used to translate addresses from available IP Pools.

IP pool name.

string

Maximum length: 79

nat-ippool6 <name>

IPv6 pools to be used for source NAT.

IP pool name.

string

Maximum length: 79

config firewall central-snat-map

config firewall central-snat-map

Configure central SNAT policies.

config firewall central-snat-map
    Description: Configure central SNAT policies.
    edit <policyid>
        set status [enable|disable]
        set action [bypass|masquerade|...]
        set ipv6 [enable|disable]
        set srcintf {string}
        set dstintf {string}
        set src-addr <name1>, <name2>, ...
        set src-addr6 <name1>, <name2>, ...
        set dst-addr <name1>, <name2>, ...
        set dst-addr6 <name1>, <name2>, ...
        set nat-ippool <name1>, <name2>, ...
        set nat-ippool6 <name1>, <name2>, ...
    next
end

config firewall central-snat-map

Parameter

Description

Type

Size

Default

policyid

Policy ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

status

Enable/disable the active status of this policy.

option

-

enable

Option

Description

enable

Enable this policy.

disable

Disable this policy.

action

central SNAT action.

option

-

masquerade

Option

Description

bypass

Bypass and do not perform NAT.

masquerade

NAT using the primary IP of destination interface.

ippool

NAT using ip pool.

ipv6

Enable/disable IPv6.

option

-

disable

Option

Description

enable

Enable ipv6.

disable

Disable ipv6.

srcintf

Source interface name from available interfaces.

string

Maximum length: 35

dstintf

Destination interface name from available interfaces.

string

Maximum length: 35

src-addr <name>

IPv4 Original address.

Address name.

string

Maximum length: 79

src-addr6 <name>

IPv6 Original address.

Address name.

string

Maximum length: 79

dst-addr <name>

IPv4 Destination address.

Address name.

string

Maximum length: 79

dst-addr6 <name>

IPv6 Destination address.

Address name.

string

Maximum length: 79

nat-ippool <name>

Name of the IP pools to be used to translate addresses from available IP Pools.

IP pool name.

string

Maximum length: 79

nat-ippool6 <name>

IPv6 pools to be used for source NAT.

IP pool name.

string

Maximum length: 79