How to remove the NAT rule using CLI for USG Flex H series models?
Zyxel Employee
Scenario :
In this article How to check the NAT rule using CLI for USG Flex H series models? Users can use CLI to check the current NAT rules. Users may want to know how to remove the NAT rule using CLI.
Answer :
Please enter the CLI command "show config vrf main virtual-server rule" to check the current NAT rules on the firewall, as shown below:
usgflex100h> show config vrf main virtual-server rule
rule NAT
enabled true
interface ge1
source-ip any
original-ip address 10.214.48.40
map-to address 192.168.168.168
nat-1-1-map
false
..
nat-loopback
true
..
map-type port protocol any original-port 55 mapped-port 66
As the above result, the NAT rule is called "NAT", please refer to below CLIs to remove the NAT rule:
usgflex100h> edit running
usgflex100h running config# del vrf main virtual-server rule NAT
usgflex100h running config# commit
Configuration committed.
usgflex100h running config# exit
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 102 Nebula Status and Incidents
- 5.8K Security
- 304 USG FLEX H Series
- 283 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 255 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 77 Security Highlight