This is a multi-part message in MIME format.

--===============0952103232==
Content-class: urn:content-classes:message
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01C68100.BD6EBB2C"

This is a multi-part message in MIME format.

------_=_NextPart_001_01C68100.BD6EBB2C
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

I have to reuse an old Symantec 7.0 firewall on NT. Looking at the =
documentation for an SGS
and looking at the actual firewall GUI, I am hoping that documentation =
is just about the same
in terms of content.=20
Scenario:=20
I have several networks connected by frame relay a cisco router. The =
router currently
performs NAT'g really PAT'g(Port Address Translation/Overloading) i.e. =
each network is mapped to a particular ip Address.
So 192.16.8.0 is mapped to 172.20.16.8, 192.16.9.0 is mapped to =
172.20.16.9,...
As I understand it, Dynamic NAT'g maps a group of Addresses on the =
inside of the
network to a group of address on the outside of the network or DMZ.
Or 192.16.8.0/24 is mapped to 172.20.8.0/24, 192.16.9.0/24 is mapped to =
172.20.9.0/24
Static NAT'g map single address on the inside to a single address on the =
outside.
Or 192.16.8.3 is mapped to 172.20.8.3, or 192.16.8.4/30 is mapped =
172.20.8.4/30(here the
addresses are mapped one to one: =
192.16.8.4->172.20.8.4,192.16.8.5->172.20.8.5,...

Question: How does one implement PAT on a Symantec Firewall?
Question: Is it possible to create multiple logical network interfaces =
on the outside interface
and use one of those logical interfaces in Address Transforms?

Thank you,
Raymond





------_=_NextPart_001_01C68100.BD6EBB2C
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable




charset=3Diso-8859-1">
6.5.7226.0">
Need to PAT several Networks on Symantec 7.0 firewall.




I have to reuse an old Symantec 7.0 =
firewall on NT. Looking at the documentation for an SGS



and looking at the actual firewall =
GUI, I am hoping that documentation is just about the same



in terms of content.


Scenario:


I have several networks connected by =
frame relay a cisco router. The router currently



performs NAT'g really PAT'g(Port =
Address Translation/Overloading) i.e. each network is mapped to a =
particular ip Address.



So 192.16.8.0 is mapped to 172.20.16.8, =
192.16.9.0 is mapped to 172.20.16.9,...



As I understand it, Dynamic NAT'g maps =
a group of Addresses on the inside of the



network to a group of address on the =
outside of the network or DMZ.



Or 192.16.8.0/24 is mapped to =
172.20.8.0/24, 192.16.9.0/24 is mapped to 172.20.9.0/24



Static NAT'g map single address on the =
inside to a single address on the outside.



Or 192.16.8.3 is mapped to 172.20.8.3, =
or 192.16.8.4/30 is mapped 172.20.8.4/30(here the



addresses are mapped one to one: =
192.16.8.4->172.20.8.4,192.16.8.5->172.20.8.5,...



Question: How does one implement PAT on =
a Symantec Firewall?



Question: Is it possible to create =
multiple logical network interfaces on the outside interface



and use one of those logical =
interfaces in Address Transforms?



Thank you,


Raymond











------_=_NextPart_001_01C68100.BD6EBB2C--

--===============0952103232==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailma...rewall-wizards

--===============0952103232==--