— Exhibit –ns5gt-> get int
Interfaces in vsys Root:
Name IP Address Zone MAC VLAN State VSD
eth1 192.168.1.1/24 Trust 0014.f693.edc2 – U –
eth2 2.2.2.2/30 Untrust 0014.f693.edc8 – U –
ns5gt-> get db stream
****** .0: <Trust/ethernet1> packet received [69]******
ipid = 22281(5709), @059ff214
packet passed sanity check.
flow_decap_vector IPv4 process
ethernet1:192.168.1.102/52380->4.2.2.2/53,17<Root>
no session found
flow_first_sanity_check: in <ethernet1>, out <N/A>
chose interface ethernet1 as incoming nat if.
flow_first_routing: in <ethernet1>, out <N/A>
search route to (ethernet1, 192.168.1.102->4.2.2.2) in vr trust-vr for vsd-0/flag-0/ifp-null
[ Dest] 7.route 4.2.2.2->2.2.2.1, to ethernet2
routed (x_dst_ip 4.2.2.2) from ethernet1 (ethernet1 in 0) to ethernet2
Permitted by policy 1
dip id = 2, 192.168.1.102/52380->2.2.2.2/2157
choose interface ethernet2 as outgoing phy if
no loop on ifp ethernet2.
routed (x_dst_ip 4.2.2.2) from ethernet1 (ethernet1 in 0) to ethernet2
policy search from zone 2-> zone 1
— Exhibit –Referring to the debug output shown in the exhibit, which NAT configuration is being used?
A.
MIP
B.
destination-based NAT
C.
source-based NAT
D.
VIP