SonicWALL TZ 190 Benutzerhandbuch
Network > NAT Policies
248
SonicOS Enhanced 4.0 Administrator Guide
NAT Policy Settings Explained
The following explains the settings used to create a NAT policy entry in the Add NAT Policy
or Edit NAT Policy windows.
or Edit NAT Policy windows.
Click the Add button in the Network > NAT Policies page to display the Add NAT Policy
window to create a new NAT policy or click the Edit icon in the Configure column for the NAT
policy you want to edit to display the Edit NAT Policy window.
window to create a new NAT policy or click the Edit icon in the Configure column for the NAT
policy you want to edit to display the Edit NAT Policy window.
•
Original Source: This drop-down menu setting is used to identify the Source IP
address(es) in the packet crossing the SonicWALL security appliance, whether it’s across
interfaces, or into/out-of VPN tunnels. You can use the default Address Objects in SonicOS
Enhanced, or you can create your own Address Objects. These entries can be single host
entries, address ranges, or IP subnets.
address(es) in the packet crossing the SonicWALL security appliance, whether it’s across
interfaces, or into/out-of VPN tunnels. You can use the default Address Objects in SonicOS
Enhanced, or you can create your own Address Objects. These entries can be single host
entries, address ranges, or IP subnets.
•
Translated Source: This drop-down menu setting is what the SonicWALL security
appliance translates the specified Original Source to as it exits the SonicWALL security
appliance, whether it’s to another interface, or into/out-of VPN tunnels. You can use the
default Address Objects in SonicOS Enhanced, or you can create your own Address
Objects entries. These entries can be single host entries, address ranges, or IP subnets.
appliance translates the specified Original Source to as it exits the SonicWALL security
appliance, whether it’s to another interface, or into/out-of VPN tunnels. You can use the
default Address Objects in SonicOS Enhanced, or you can create your own Address
Objects entries. These entries can be single host entries, address ranges, or IP subnets.
•
Original Destination: This drop-down menu setting is used to identify the Destination IP
address(es) in the packet crossing the SonicWALL security appliance, whether it be across
interfaces, or into/out-of VPN tunnels. When creating outbound NAT polices, this entry is
usually set to Any since the destination of the packet is not being changed, but the source
is being changed. However, these Address Object entries can be single host entries,
address ranges, or IP subnets.
address(es) in the packet crossing the SonicWALL security appliance, whether it be across
interfaces, or into/out-of VPN tunnels. When creating outbound NAT polices, this entry is
usually set to Any since the destination of the packet is not being changed, but the source
is being changed. However, these Address Object entries can be single host entries,
address ranges, or IP subnets.
•
Translated Destination: This drop-down menu setting is what the SonicWALL translates
the specified Original Destination to as it exits the SonicWALL security appliance,
whether it’s to another interface, or into/out-of VPN tunnels. When creating outbound NAT
polices, this entry is usually set to Original, since the destination of the packet is not being
changed, but the source is being changed. However, these Address Objects entries can be
single host entries, address ranges, or IP subnets.
the specified Original Destination to as it exits the SonicWALL security appliance,
whether it’s to another interface, or into/out-of VPN tunnels. When creating outbound NAT
polices, this entry is usually set to Original, since the destination of the packet is not being
changed, but the source is being changed. However, these Address Objects entries can be
single host entries, address ranges, or IP subnets.
•
Original Service: This drop-down menu setting is used to identify the IP service in the
packet crossing the SonicWALL security appliance, whether it’s across interfaces, or into/
out-of VPN tunnels. You can use the default services on the SonicWALL, or you can create
your own entries. For many NAT policies, this field is set to Any, as the policy is only
altering source or destination IP addresses.
packet crossing the SonicWALL security appliance, whether it’s across interfaces, or into/
out-of VPN tunnels. You can use the default services on the SonicWALL, or you can create
your own entries. For many NAT policies, this field is set to Any, as the policy is only
altering source or destination IP addresses.