Reordering Simple Dynamic Nat Entries; Specifying Simple Dynamic Nat Exceptions - Watchguard Firebox X1000 User Manual
Vpn gateway
Hide thumbs
Also See for Firebox X1000:
- Reference manual (264 pages) ,
- Quick start manual (38 pages) ,
- Hardware manual (30 pages)
Table of Contents
Advertisement
3
Use the To drop-down list to select the destination of
outgoing packets.
4
To add either a host or network IP address, click the ...
button. Use the drop-down list to select the address
type. Enter the IP address or range. Network addresses
must be entered in slash notation.
When typing IP addresses, type the digits and periods in
sequence. Do not use the TAB or arrow key to jump past the
periods. For information on entering IP addresses, see "Entering
IP addresses" on page 43.
5
Click OK.
The new entry appears in the Dynamic NAT Entries list.
Reordering simple dynamic NAT entries
To reorder dynamic NAT entries, select the entry and click
either Up or Down. There is no method to modify a
dynamic NAT entry. Instead, use the Remove button to
remove existing entries and the Add button to add new
entries.
Specifying simple dynamic NAT exceptions
You can set up ranges of addresses in dynamic NAT so that
each address in that range is a part of the NAT policy. By
using the dynamic NAT exceptions option you can exclude
certain addresses from that policy.
From Policy Manager:
1
Select Setup => NAT.
The NAT Setup dialog box appears.
2
Click Advanced.
The Advanced NAT Settings dialog box appears.
3
Click the Dynamic NAT Exceptions tab.
4
Click Add.
The Add Exception dialog box appears.
5
In the From and To boxes, select Trusted, Optional,
dvcp_nets, or dvcp_local_nets.
The latter two choices are aliases for VPN Manager and appear
if your Firebox is configured as a DVCP client. dvcp_nets refers
to networks behind the DVCP client and dvcp_local_nets refers to
User Guide
Using Simple Dynamic NAT
105
Hide quick links:
Advertisement
Table of Contents
