At 01:11 PM 10/23/2001 -0700, Edward Ingram wrote: >The interface field is labeled Destination. If I put in PSN for that >field, then it would apply IP Pass Through to packets that came from the >PSN Network and were destined for the PSN Interface (itself). That >wouldn't work because I obviously want NAT for packets coming from the >PSN to the EXT since the PSN Network is a private network. By >specifying the PROT network, I'm telling it not to apply NAT for packets >coming from the PSN Network destined for the PROT network...which is >what I want.
but there would never *be* NAT applied for PSN => PROT packets, so this makes no sense. If you want PSN<==>PROT without NAT, the passthrough network/hosts should be the PROT subnet, with the PSN interface specified. You may or may not need to select "Inbound", depending on your setup.
