Using DYNAMIC NAT

The following steps outline how DYNAMIC NAT is used to translate the source IP addresses of hosts on the network (10.0.3.0 in this example) to a legal address (192.168.3.100 in this example).

Add rules to ALLOW hosts on the 10.0.3.0 network free access to the Internet.

Add rules to only ALLOW SMTP access to mail-server.

Add rules to only ALLOW authenticated telnet and FTP to the qfe2 interface of lon-screen1.

Note -
The routing and stealth interfaces must be on different subnets, and separated by an external router.

Previous: Mixed-Mode Limitation
Next: Detailed Mixed-Mode Configuration