1. Manuals
  2. Brands
  3. Watchguard Manuals
  4. Gateway
  5. Firebox X20E
  6. User manual

Changing The Priority Of A Traffic Control Filter; Removing A Traffic Control Filter; Working With Firewall Nat; Nat Types - Watchguard Firebox X20E User Manual

Firmware version 8.6 all firebox x edge e-series standard and wireless models
Hide thumbs Also See for Firebox X20E:
Table of Contents

Advertisement

Working with Firewall NAT

Changing the priority of a traffic control filter

Select an entry from any category.
1
To select multiple entries, hold down the Control or Shift key.
To make the traffic more important, click the Up button adjacent to the category list. To make
2
the traffic less important, click the Down button.
The entries move to the new position in the list.
Click Submit on the Traffic Control page to save your changes.
3

Removing a traffic control filter

Select one entry from any category, and then click Delete.
1
The entry is removed from the traffic control category.
Click Submit on the Traffic Control page to save your changes.
2
Working with Firewall NAT
The Firebox® X Edge e-Series supplies advanced NAT (Network Address Translation) options. NAT was
first developed as a solution for organizations that could not get a sufficient quantity of registered IP
network numbers for their needs.
NAT can refer to many different types of IP address and port translation. Each type of NAT allows many
devices to use the same IP address at the same time to send data to a different network. NAT is also
used to hide the private IP addresses of hosts on your LAN. When you use NAT, the source IP address is
changed on all of the packets you send.

NAT types

The Firebox X Edge supports three different forms of NAT. Many users use more than one type of NAT
at the same time. You apply some types of NAT to all firewall traffic, and other types as a setting in a
policy.
Dynamic NAT
Dynamic NAT, also known as "IP masquerading, " changes the source port and source IP address for
outgoing connections. The source IP address is changed to the external IP address of the Firebox X
Edge. This hides the real IP address of the host that sends the packet from the external network.
Dynamic NAT is frequently used to hide the IP addresses of trusted and optional hosts when they get
access to public services.
The Edge automatically uses Dynamic NAT on all outgoing traffic. If you want outgoing traffic from a
host on the trusted or optional network to show an IP address that is different from the primary IP
address on the external interface, you must use 1-to-1 NAT, which is described in the next section.
1-to-1 NAT
You can use 1-to-1 NAT to map a secondary external IP address to the server behind the Edge. You do
not have to change the IP address of your internal server. When you enable 1-to-1 NAT, the
Firebox X Edge changes all outgoing packets sent from one private IP address to a public IP address dif-
ferent from the Edge's primary external IP address.
142
Firebox X Edge e-Series
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the Firebox X20E and is the answer not in the manual?

Related Manuals for Watchguard Firebox X20E

This manual is also suitable for:

Firebox x55eFirebox x55e-wFirebox x20e-wFirebox x10e-wFirebox x10eFirebox x edge e-series

Table of Contents