How to remove the NAT rule using CLI for USG Flex H series models?

Zyxel_Jeff
Zyxel_Jeff Posts: 1,206  Zyxel Employee
100 Answers 500 Comments Friend Collector Fourth Anniversary

Scenario :

In this article How to check the NAT rule using CLI for USG Flex H series models? Users can use CLI to check the current NAT rules. Users may want to know how to remove the NAT rule using CLI.

Answer :

Please enter the CLI command "show config vrf main virtual-server rule" to check the current NAT rules on the firewall, as shown below:

usgflex100h> show config vrf main virtual-server rule
rule NAT
enabled true
interface ge1
source-ip any
original-ip address 10.214.48.40
map-to address 192.168.168.168
nat-1-1-map
false
..
nat-loopback
true
..
map-type port protocol any original-port 55 mapped-port 66

As the above result, the NAT rule is called "NAT", please refer to below CLIs to remove the NAT rule:

usgflex100h> edit running
usgflex100h running config# del vrf main virtual-server rule NAT
usgflex100h running config# commit
Configuration committed.
usgflex100h running config# exit


Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L

Tagged: