Select the correct NAT rules, so NAT happens ONLY between “web_dallas” and the remote network.

Your internal Web server in the DMZ has IP address 172.16.10.1/24. A particular network from the Internet tries to access this Web server. You need to set up some type of Network Address Translation (NAT), so that NAT occurs only for the HTTP service, and only from the remote network as the source. The public IP address for the Web server is 200.200.200.1. All properties in the NAT screen of Global Properties are enabled.
Select the correct NAT rules, so NAT happens ONLY between "web_dallas" and the remote network.

Your internal Web server in the DMZ has IP address 172.16.10.1/24. A particular network from the c
Select the correct NAT rules, so NAT happens ONLY between “web_dallas” and the remote network.

A.
1. Create another node object named “web_dallas_valid”, and enter “200.200.200.1” in the General
Properties screen.
2. Create two manual NAT rules above the automatic Hide NAT rules for the 172.16.10.0 network.
3. Select “HTTP” in the Service column of both manual NAT rules.
4. Enter an ARP entry and route on the Security Gateway’s OS.

B.
1. Enable NAT on the web_dallas object, select “static”, and enter “200.200.200.1” in the General Properties
screen.
2. Specify “HTTP” in the automatic Static Address Translation rules.
3. Create incoming and outgoing rules for the web_dallas server, for the HTTP service only.

C.
1. Enable NAT on the web_dallas object, select “hide”, and enter “200.200.200.1” for the Hide NAT IP
address.
2. Specify “HTTP” in the Address Translation rules that are generated automatically.
3. Create incoming and outgoing rules for the web_dallas server, for the HTTP service only.

D.
1. Create another node object named “web_dallas_valid”, and enter “200.200.200.1” in the General
Properties screen.
2. Create two manual NAT rules below the Automatic Hide NAT rule for network 172.16.10.0 , in the Address
Translation Rule Base.
3. Select “HTTP” in the Service column of both manual NAT rules.
4. Enter an ARP entry and route on the Security Gateway’s OS.



Leave a Reply 1

Your email address will not be published. Required fields are marked *

twelve − eleven =


networkmanagers

networkmanagers

I have the same idea.