The following are some rules and limitations on interface-based NAT:
1. The egress interface must be bound to the Untrust zone.
2. When a user-defined zone is bound to the ingress interface with NAT
enabled, that user-defined security zone must be defined on a different
virtual router than the Untrust zone.
3. Interface-based NAT will not work between the Trust zone and a userdefined
defined zone.
4. Interface-based NAT does not work on an interface bonded to the
Untrust zone, even though it can be enabled.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment