|
|
|
You can configure these types of NAT rules for your Security Gateway:
Use Hide NAT to translate one or multiple IP addresses to an IP address of a specific object (for example, a Security Gateway), or to a specific IP address. The Security Gateway allows bi-directional connections to establish calls for the VoIP topology. The Security Gateway blocks connections for non-VoIP topologies.
Use Static NAT to translate one IP address to a specific IP address. Each IP address on one network is translated to a different IP address on another network. Security Gateway allows connections to and from the computers, for which you configure the Static NAT.
Use No-NAT to cancel the existing NAT rules.
Example: You have an internal network of computers behind a Security Gateway. To represent the entire internal network, you create a Network Object and configure it to be NATed. An automatic NAT rule shows in Security Policies > Access Control > NAT. Now, you want to exclude one specific computer from this automatic NAT rule.
To do this, you have to create a Host object and configure a Manual NAT rule that translates only this Host object to itself. You must place this Manual NAT rule above all Automatic NAT rules.
Original Source |
Original Destination |
Original Services |
Translated Source |
Translated Destination |
Translated Services |
|---|---|---|---|---|---|
Host_object |
* Any |
* Any |
= Original |
= Original |
= Original |
