Hello. We are a small ISP and some of our customers are configured with a 1:1 nat. Example below uses 128.66.0.1 as their "public IP" and 100.64.0.1 as their "inside IP". What do I need to add so that another customer, customer2 with IP 100.67.0.1 can communicate with customer1's 128.66.0.1 IP by having the traffic hairpin through our MX. I assume I'd have to add some source natting on customer2's IP.
set services nat rule static-nat-private-to-public term customer1 from source-address 100.64.0.1/32 set services nat rule static-nat-private-to-public term customer1 then translated source-prefix 128.66.0.1/32 set services nat rule static-nat-private-to-public term customer1 then translated translation-type basic-nat44 set services nat rule static-nat-public-to-private term customer1 apply-flags omit set services nat rule static-nat-public-to-private term customer1 from destination-address 128.66.0.1/32 set services nat rule static-nat-public-to-private term customer1 then translated destination-prefix 100.64.0.1/32 set services nat rule static-nat-public-to-private term customer1 then translated translation-type dnat-44
Many Thanks,
Tim Nowaczyk