{"id":376,"date":"2016-08-29T22:40:58","date_gmt":"2016-08-29T15:40:58","guid":{"rendered":"https:\/\/www.routecloud.net\/blog\/?p=376"},"modified":"2016-08-29T23:09:48","modified_gmt":"2016-08-29T16:09:48","slug":"junos-security","status":"publish","type":"post","link":"https:\/\/www.routecloud.net\/blog\/junos-security\/","title":{"rendered":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX"},"content":{"rendered":"

Ini adalah artikel nat pertama sebagai fondasi untuk memahami artikel tentang nat selanjutnya.\u00a0karena ane berencana membahas nat secara keseluruhan yang dibutuhkan di real network or most real scenario terutama yang menggunankan platform juniper srx \ud83d\ude42 As general description bahwa fungsi NAT atau network address translation\u00a0untuk mentranslasikan public address ke private address, atau boleh dikatakan juga menstranslasikan dari alamat satu ke alamat ip yang lain nya. \u00a0Supaya lebih jelas mari kita lihat gambar berikut:<\/p>\n

\"example<\/a><\/p>\n

<\/p>\n

Ane coba summary fungsi nat ya sbb:<\/p>\n

a. Jika anda butuh koneksi ke internet dengan segmen ip private maka anda butuh nat.<\/p>\n

b. Menghemat ip public, jadi jika anda punya banyak host yang \u00a0butuh banyak koneksi ke public, maka anda pasti butuh banyak ip tentunya, dengan solusi NAT, anda hanya butuh satu ip public atau beberapa untuk koneksi ke internet.<\/p>\n

c. Keamanan, private network anda tidak akan diketahui oleh pihak lain atau partner anda. Ini akan menjadi menarik setiap end-to-end communcation baik dari private ke public atau antar intranet menerapkan nat. \u00a0Namun disisi lain jika design di datacenter semuanya menggunakan nat, maka disisi engineer konfigurasi jadi complex dan saat troubleshooting agak ribet dan butuh waktu. Apalagi network nya bru di handover ke tim atau vendor lain, jadi tambah mumet dah haha.<\/p>\n

Oke, selanjutnya mari kita lihat bagaimana konsep detail nat di juniper srx. untuk lebih jelasnya mari kita lihat gambar berikut:<\/p>\n

\"nat<\/a><\/p>\n

Jadi ada beberapa tipe nat yang kita kenal, ada static nat, destination nat, beserta source nat. nah by flow, juniper srx akan memproses static nat terlebih dahulu dibandingkan dengan dest nat or source nat. So jika ada rule nat yang mungkin sama antara static nat dan dest nat maka srx akan memproses static nat saja.\u00a0Lalu apa bedanya ketiga tipe nat tersebut. secara sederahana static nat itu untuk one-to-one translation. atau dengan kata lain setiap satu ip public ip address kita harus mapping ke satu ip private. lalu destination nat adalah untuk many-to-many translation, destination nat juga bisa digunakan one-to-one translation, bisa juga translasi dari block ip ke block ip yang lain, kombinasi port dari port satu ke ke beberapa port yang lain atau sebaliknya. sedangkan source nat nat untuk koneksi ke internet, jadi sekenarionnya bisa one-to-one, atau many-to-many, in case seperti itu, lalu satu lagi proses translasinya, klo nat source, ip source nya yang dirubah, sebagai contoh client-192.168.1.1 mau hit ke ip google 8.8.8.8, nah ip 192.x itu akan dirubah berdasarkan ip public yang kita configure di nat kita misal 202.0.0.1. jadi komunikasi nya antar ip public atau ip yang sudah di nat itu sebetulnya. sedangkan destination nat, misal kita hit ip google 8.8.8.8 maka disisi nat google bisa saja dia translate ke ip 172.16.1.1 misalnya. jadi yang berubah adalah ip destinationnnya.<\/p>\n

Oke cukup dlu ya, sebagai intro awal, untuk lab masing2 nat tersebut tunggu artikel selanjutnya \ud83d\ude42<\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

Ini adalah artikel nat pertama sebagai fondasi untuk memahami artikel tentang nat selanjutnya.\u00a0karena ane berencana membahas nat secara keseluruhan yang dibutuhkan di real network or most real scenario terutama yang menggunankan platform juniper srx \ud83d\ude42 As general description bahwa fungsi NAT atau network address translation\u00a0untuk mentranslasikan public address ke private address, atau boleh dikatakan juga […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[5],"tags":[39,40],"yoast_head":"\n[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.routecloud.net\/blog\/junos-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog\" \/>\n<meta property=\"og:description\" content=\"Ini adalah artikel nat pertama sebagai fondasi untuk memahami artikel tentang nat selanjutnya.\u00a0karena ane berencana membahas nat secara keseluruhan yang dibutuhkan di real network or most real scenario terutama yang menggunankan platform juniper srx \ud83d\ude42 As general description bahwa fungsi NAT atau network address translation\u00a0untuk mentranslasikan public address ke private address, atau boleh dikatakan juga […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.routecloud.net\/blog\/junos-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Routecloud Indonesia - Blog\" \/>\n<meta property=\"article:published_time\" content=\"2016-08-29T15:40:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2016-08-29T16:09:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png\" \/>\n<meta name=\"twitter:card\" content=\"summary\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"arisyi\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/#organization\",\"name\":\"Routecloud Indonesia\",\"url\":\"https:\/\/www.routecloud.net\/blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2017\/03\/logo_routecloud_horz_2x_b.png\",\"contentUrl\":\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2017\/03\/logo_routecloud_horz_2x_b.png\",\"width\":400,\"height\":80,\"caption\":\"Routecloud Indonesia\"},\"image\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/#website\",\"url\":\"https:\/\/www.routecloud.net\/blog\/\",\"name\":\"Routecloud Indonesia - Blog\",\"description\":\"Share Your Knowledge\",\"publisher\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.routecloud.net\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png\",\"contentUrl\":\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png\",\"width\":833,\"height\":242},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage\",\"url\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/\",\"name\":\"[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage\"},\"datePublished\":\"2016-08-29T15:40:58+00:00\",\"dateModified\":\"2016-08-29T16:09:48+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.routecloud.net\/blog\/junos-security\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.routecloud.net\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"[Junos Security] Konsep Dasar NAT Pada Juniper SRX\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/#\/schema\/person\/bababa304857e6ec9533ffe7b108ec8c\"},\"headline\":\"[Junos Security] Konsep Dasar NAT Pada Juniper SRX\",\"datePublished\":\"2016-08-29T15:40:58+00:00\",\"dateModified\":\"2016-08-29T16:09:48+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage\"},\"wordCount\":468,\"commentCount\":2,\"publisher\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png\",\"keywords\":[\"nat\",\"srx\"],\"articleSection\":[\"Juniper\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.routecloud.net\/blog\/junos-security\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/#\/schema\/person\/bababa304857e6ec9533ffe7b108ec8c\",\"name\":\"arisyi\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.routecloud.net\/blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/ad901c240e8ac1273cd2e05801a73235?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/ad901c240e8ac1273cd2e05801a73235?s=96&d=mm&r=g\",\"caption\":\"arisyi\"},\"sameAs\":[\"http:\/\/arisyi.net\"],\"url\":\"https:\/\/www.routecloud.net\/blog\/author\/arisyi\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.routecloud.net\/blog\/junos-security\/","og_locale":"en_US","og_type":"article","og_title":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog","og_description":"Ini adalah artikel nat pertama sebagai fondasi untuk memahami artikel tentang nat selanjutnya.\u00a0karena ane berencana membahas nat secara keseluruhan yang dibutuhkan di real network or most real scenario terutama yang menggunankan platform juniper srx \ud83d\ude42 As general description bahwa fungsi NAT atau network address translation\u00a0untuk mentranslasikan public address ke private address, atau boleh dikatakan juga […]","og_url":"https:\/\/www.routecloud.net\/blog\/junos-security\/","og_site_name":"Routecloud Indonesia - Blog","article_published_time":"2016-08-29T15:40:58+00:00","article_modified_time":"2016-08-29T16:09:48+00:00","og_image":[{"url":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png"}],"twitter_card":"summary","twitter_misc":{"Written by":"arisyi","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.routecloud.net\/blog\/#organization","name":"Routecloud Indonesia","url":"https:\/\/www.routecloud.net\/blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.routecloud.net\/blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2017\/03\/logo_routecloud_horz_2x_b.png","contentUrl":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2017\/03\/logo_routecloud_horz_2x_b.png","width":400,"height":80,"caption":"Routecloud Indonesia"},"image":{"@id":"https:\/\/www.routecloud.net\/blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.routecloud.net\/blog\/#website","url":"https:\/\/www.routecloud.net\/blog\/","name":"Routecloud Indonesia - Blog","description":"Share Your Knowledge","publisher":{"@id":"https:\/\/www.routecloud.net\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.routecloud.net\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png","contentUrl":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png","width":833,"height":242},{"@type":"WebPage","@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage","url":"https:\/\/www.routecloud.net\/blog\/junos-security\/","name":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX - Routecloud Indonesia - Blog","isPartOf":{"@id":"https:\/\/www.routecloud.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage"},"datePublished":"2016-08-29T15:40:58+00:00","dateModified":"2016-08-29T16:09:48+00:00","breadcrumb":{"@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.routecloud.net\/blog\/junos-security\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.routecloud.net\/blog\/"},{"@type":"ListItem","position":2,"name":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX"}]},{"@type":"Article","@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#article","isPartOf":{"@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage"},"author":{"@id":"https:\/\/www.routecloud.net\/blog\/#\/schema\/person\/bababa304857e6ec9533ffe7b108ec8c"},"headline":"[Junos Security] Konsep Dasar NAT Pada Juniper SRX","datePublished":"2016-08-29T15:40:58+00:00","dateModified":"2016-08-29T16:09:48+00:00","mainEntityOfPage":{"@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#webpage"},"wordCount":468,"commentCount":2,"publisher":{"@id":"https:\/\/www.routecloud.net\/blog\/#organization"},"image":{"@id":"https:\/\/www.routecloud.net\/blog\/junos-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.routecloud.net\/blog\/wp-content\/uploads\/2016\/08\/example-nat-communication.png","keywords":["nat","srx"],"articleSection":["Juniper"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.routecloud.net\/blog\/junos-security\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.routecloud.net\/blog\/#\/schema\/person\/bababa304857e6ec9533ffe7b108ec8c","name":"arisyi","image":{"@type":"ImageObject","@id":"https:\/\/www.routecloud.net\/blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/ad901c240e8ac1273cd2e05801a73235?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ad901c240e8ac1273cd2e05801a73235?s=96&d=mm&r=g","caption":"arisyi"},"sameAs":["http:\/\/arisyi.net"],"url":"https:\/\/www.routecloud.net\/blog\/author\/arisyi\/"}]}},"_links":{"self":[{"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/posts\/376"}],"collection":[{"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/comments?post=376"}],"version-history":[{"count":10,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/posts\/376\/revisions"}],"predecessor-version":[{"id":425,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/posts\/376\/revisions\/425"}],"wp:attachment":[{"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/media?parent=376"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/categories?post=376"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.routecloud.net\/blog\/wp-json\/wp\/v2\/tags?post=376"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}