Hi ibariouen, I think you need to use policy based NAT, so you can control which IP needs to be NATed, and which IP doesn't.
regards, -- Michel~ On Tue, Aug 24, 2010 at 8:41 AM, ibariouen khalid <ibario...@gmail.com>wrote: > Dear community > > i have the following design issue and i need your feed-back on it : > > i have many clients that need to be connected to internet; The traffic from > client is comming from the trust zone via one interface and goes via > untrust > interface ; > NAT is applied from trust to untrust to Nat the source ip addresse of the > client. the issue is that some client have a *static public ip address* > !!! > > DIP : 41.16.32.11 - 41.16.32.12 > static range is : 84.16.31.0/29 > > is there any methode how to stop the NAT for the uses with public ip ??? > > > Regards > _______________________________________________ > juniper-nsp mailing list juniper-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/juniper-nsp > _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp