About Nat; Static Nat - Watchguard V10 User Manual
Firebox vclass series
Hide thumbs
Also See for V10:
- Command line interface manual (181 pages) ,
- Installation manual (97 pages) ,
- Supplementary manual (28 pages)
Table of Contents
Advertisement
CHAPTER 8: About Security Policies
To toggle a particular field's bit to ON, click the 0 in a
field, which will automatically turn into a 1. To reverse
this setting, click the 1 to restore it to 0.
5
Click Done.
About NAT
Network address translation (NAT)–also called IP mas-
querading or port forwarding–takes IP addresses used on
one network and translates them into IP addresses used
within another network. You use NAT to hide network
addresses from hosts on another network. Hosts elsewhere
only see outgoing packets from the Firebox Vclass appli-
ance itself. You can improve security by mapping inside
(private or trusted) addresses to outside (public or
optional) addresses. Using NAT also conserves the number
of global IP addresses your company needs. More impor-
tantly, with NAT you can use a single public IP address for
all outgoing and incoming communication, which keeps
your trusted addresses secure.
Static NAT
You may have situations in which you want a subnet, a
server, or a group of users to be associated with a different
IP address than the one actually assigned to them. Whether
you want to maintain privacy for a number of client users
or hide internal assets from external view, you can do so
with static network address translation (static NAT).
The most important parameters necessary for creation of a
static NAT policy are:
•
The internal IP address of the private network asset/
client
•
The external IP address to which this internal device's
IP address will be mapped
198
Vcontroller
- Quick Links:
- Watchguard Firebox Vclass Components
Hide quick links:
Advertisement
Table of Contents
