[ Charset ISO-8859-2 unsupported, converting... ] > Hello, From the `man 5 ipnat` an example is given as following: > > To change IP#'s used internally from network 10 into an ISP > provided 8 > bit subnet at 209.1.2.0 through the ppp0 interface, the following > would > be used: > > map ppp0 10.0.0.0/8 -> 209.1.2.0/24 > > How does a firewall handle reply traffic for these nat'ted traffic? > Where do we map a network to another network (not one of our firewalls > IPs!!!), can anyone give another example of using this kind of nat mapping?
If you have been delegated a subnet, say 209.1.2.0/24, by your ISP then this range of addresses may be different to the address used by your firewall to connect to the ISP. In this case you can translate your internal addresses to a larger number of external addresses than just the one for your firewall. Darren
