mailing list archives
Need to PAT several Networks on Symantec 7.0 firewall.
From: "Jacob, Raymond A Jr" <raymond.jacob () navy mil>
Date: Fri, 26 May 2006 16:12:40 -0400
I have to reuse an old Symantec 7.0 firewall on NT. Looking at the documentation for an SGS
and looking at the actual firewall GUI, I am hoping that documentation is just about the same
in terms of content.
I have several networks connected by frame relay a cisco router. The router currently
performs NAT'g really PAT'g(Port Address Translation/Overloading) i.e. each network is mapped to a particular ip
So 126.96.36.199 is mapped to 172.20.16.8, 188.8.131.52 is mapped to 172.20.16.9,...
As I understand it, Dynamic NAT'g maps a group of Addresses on the inside of the
network to a group of address on the outside of the network or DMZ.
Or 184.108.40.206/24 is mapped to 172.20.8.0/24, 220.127.116.11/24 is mapped to 172.20.9.0/24
Static NAT'g map single address on the inside to a single address on the outside.
Or 18.104.22.168 is mapped to 172.20.8.3, or 22.214.171.124/30 is mapped 172.20.8.4/30(here the
addresses are mapped one to one: 126.96.36.199->172.20.8.4,188.8.131.52->172.20.8.5,...
Question: How does one implement PAT on a Symantec Firewall?
Question: Is it possible to create multiple logical network interfaces on the outside interface
and use one of those logical interfaces in Address Transforms?
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
- Need to PAT several Networks on Symantec 7.0 firewall. Jacob, Raymond A Jr (May 26)