ZyXEL Communications ZyWALL USG 200 Series User Manual page 424

Chapter 19 NAT
For example, a LAN user's computer at IP address 192.168.1.89 queries a public
DNS server to resolve the SMTP server's domain name (xxx.LAN-SMTP.com in this
example) and gets the SMTP server's mapped public IP address of 1.1.1.1.
Figure 318 LAN Computer Queries a Public DNS Server
DNS
xxx.LAN-SMTP.com = 1.1.1.1
xxx.LAN-SMTP.com = ?
1.1.1.1
LAN
192.168.1.21 192.168.1.89
The LAN user's computer then sends traffic to IP address 1.1.1.1. NAT loopback
uses the IP address of the ZyWALL's LAN interface (192.168.1.1) as the source
address of the traffic going from the LAN users to the LAN SMTP server.
Figure 319 LAN to LAN Traffic
NAT
Source 192.168.1.1
Source 192.168.1.89
SMTP
SMTP
LAN
192.168.1.21 192.168.1.89
The LAN SMTP server replies to the ZyWALL's LAN IP address and the ZyWALL
changes the source address to 1.1.1.1 before sending it to the LAN user. The
return traffic's source matches the original destination address (1.1.1.1). If the
424
ZyWALL USG 100/200 Series User's Guide