Context: I'm a Juniper neophyte, but I have a number of years of experience with Cisco
I'm attempting to get traffic passed through our SRX340 to our nginx server that proxies all the traffic to our servers. When I run >show security nat destination rule all it shows zero translation hits. I've compared the destination nat and security policy rules to the vpn server settings (which is working), and cannot figure out why this one is not working.
Here is the relevant config:
pool nginx-NAT {
address 192.168.1.200/32;
}
rule-set PublicServers {
from interface reth1.0;
rule minas-tirith {
match {
destination-address 1.1.1.1/32;
}
then {
destination-nat {
pool {
nginx-NAT;
}
}
}
}
}from-zone WAN to-zone DMZ {
policy nginx-Policy {
match {
source-address any;
destination-address 192.168.1.200/32;
application any;
}
then {
permit;
}
}
}
Any thoughts?