I'm currenty migrating away from my PIX firewalls to a pair of Juniper SRX240. The problem I'm having is trying to match existing settings for inbound natting.
On the PIX here's what I've got for MS Exchagne for example:
Static Nat Rules that maps public IPs to private IPs and then an access rule that specify the source addresses, destination addresses and the allowed ports. For example my exchange servers have port service group with 80, 443, 25 allowed to 3 exchange servers.
On Juniper - am I setting up destination nat or static nat? Most of the examples suggest destination nat. I've gone through a single example of RDP and gotten it to work, however when I tried to apply it to exchange I ran into a number of issues.
Destination NAT Rule Set - I tried to add a new rule set for Exhange but get the error that the context is in conflict with my RDP rule set.
Could someone provide the CLI inputs for this?
ex001 - public IP (188.8.131.52), private IP (192.168.10.10), allowed inbound ports 80, 443, 25
ex002 - public IP (184.108.40.206), private IP (192.168.10.11), allowed inbound ports 80, 443, 25
A quick explanation of how best to setup the Rule sets & rules with relation to for example exchange servers, a couple of web servers, an RDP to some management servers.
Much appreciated. jk