23-26
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 23 Configuring Network Address Translation
NAT Policies on Security Devices
• Add/Edit Static Rule Dialog Box, page 23-26
• Advanced NAT Options Dialog Box, page 23-28
• General Tab, page 23-30
• Standard rules table topics:
–
Using Rules Tables, page 12-7
–
Filtering Tables, page 1-45
–
Table Columns and Column Heading Features, page 1-46
Add/Edit Static Rule Dialog Box
Use the Add/Edit Static Rule dialog box to add or edit static translation rules for a firewall device or
shared policy.
Navigation Path
You can access the Add/Edit Static Rule dialog box from the Static Rules Tab, page 23-25.
Related Topics
• Configuring NAT on PIX, FWSM, and pre-8.3 ASA Devices, page 23-17
• Translation Rules: PIX, FWSM, and pre-8.3 ASA, page 23-18
• Advanced NAT Options Dialog Box, page 23-28
Field Reference
Table 23-11 Add/Edit Static Rule Dialog Box
Element Description
Enable Rule If checked, the rule is enabled. Deselect this option to disable the rule
without deleting it.
Translation Type Select the type of translation for this rule: NAT or PAT.
Original Interface Enter (or Select) the device interface connected to the host or network with
original addresses to be translated.
Original Address Enter (or Select) the source address to be translated.
Translated Interface Enter (or Select) the interface on which the translated addresses are to be
used.
To specify this as an identity NAT rule, enter the same interface in both this
and the Original Interface fields.
Use Interface IP/Use
Selected Address
Specify the address used for the Translated Interface: select Use Interface IP
(address), or select Use Selected Address and enter an address, or Select a
network/host object.
Enable Policy NAT Select this option to enable Policy NAT for this translation rule.
Dest Address If Policy NAT is enabled, specify the destination addresses of the hosts or
networks to which the rule applies.