How to check the NAT rule using CLI for USG Flex H series models?
Zyxel_Jeff
Posts: 1,169 
Zyxel Employee
Zyxel Employee
Scenario :
Users usually create NAT rules via the Web-GUI (as shown below). While troubleshooting NAT-related issues, users may use the CLI mode. This guide will show you how to check the NAT rules in CLI mode.
Answer :
Please enter the CLI command "show config vrf main virtual-server rule" to check the current NAT rules on the firewall, as shown below:
usgflex100h> show config vrf main virtual-server rule
rule NAT
enabled true
interface ge1
source-ip any
original-ip address 10.214.48.40
map-to address 192.168.168.168
nat-1-1-map
false
..
nat-loopback
true
..
map-type port protocol any original-port 55 mapped-port 66
Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L
Tagged:
0
Categories
- All Categories
- 414 Beta Program
- 2.3K Nebula
- 132 Nebula Ideas
- 92 Nebula Status and Incidents
- 5.4K Security
- 181 USG FLEX H Series
- 258 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 37 Wireless Ideas
- 6.2K Consumer Product
- 236 Service & License
- 372 News and Release
- 79 Security Advisories
- 24 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 80 About Community
- 69 Security Highlight