In the App Net Manager, Outbound NAT is enabled on the User Groups tab on a per address range basis in the Default User Group. The address range will be NATed to a specified range of addresses for all partners of this Location gateway. Outbound NAT translates a local subnet of IP addresses to another subnet before the subnet is made visible to remote application network partners.

The Specified setting of Outbound NAT is a useful way of organizing an entire application network. An administrator can map each User Group in the application network to a distinct set of address ranges so that there are no address conflicts. The traffic from each site can then be identified by the range into which it was mapped. It is the administrator's responsibility to guarantee that there are no conflicts between the addresses that are specified for each subnet.

The primary use of the Prohibited setting of Outbound NAT is to prevent NATing on a connection that is transporting a protocol containing embedded IP addresses, such as FTP. This type of protocol will not work correctly through a NATed connection. Prohibited will prevent any NATing by a Location partner (Inbound NAT or Auto Resolve NAT) that would cause a problem.