MIP in Juniper ScreenOS
For those familiar with JUNOS, MIP in ScreenOS is equivalent to Static NAT in JUNOS. Mapping of one IP address to another directly is called MIP. Essentially, a MIP is static destination address translation, mapping the Destination IP address in an IP packet header to another static IP address. When a host with MIP initiates outbound traffic, the security device translate source IP address of the host to MIP address. This Bidirectional translation is different from behavior of source and Destination address translation.
An example can substantiate the understanding of MIP –
If the security device applies a policy NAT – destination for traffic sent from Host 1 to Host 2, the security device translates the original destination IP address from 220.127.116.11 to 18.104.22.168 (It also translates the source IP address from 22.214.171.124 to 126.96.36.199 while the receiving host 2 responds back to host 1)
MIPs allow inbound traffic to reach private addresses in a zone whose interface is in NAT mode. MIPs also provide part of the solution to the problem of overlapping address spaces at two sites connected by a VPN tunnel.
2 Approaches of Configuring MIP in Juniper ScreenOS :
APPROACH 1 – (Using Web GUI)
APPROACH 2 – (CLI Configuration)
ABOUT THE AUTHOR
I am here to share my knowledge and experience in the field of networking with the goal being – “The more you share, the more you learn.”
I am a biotechnologist by qualification and a Network Enthusiast by interest. I developed interest in networking being in the company of a passionate Network Professional, my husband.
I am a strong believer of the fact that “learning is a constant process of discovering yourself.”
– Rashmi Bhardwaj (Author/Editor)