User Guide
Administration.....99
NOTE: In this context, the nearest IPis the one belonging to the same network or the closest routable IPon
a different network.
Network configuration changes made to eth0, eth1, bond0, br0, priv, kvm, spm, and any other
bridge groups and virtual private interfaces could affect the applicability of NATand firewall rules.
All firewall rules that reference interface names or addresses that were replaced during the network
configuration change should be edited within the NATand/or firewall rules to ensure proper
network communication. For example, eth0/eth1 must be replaced with br0 or bond0 where
applicable.
NATflow
Traffic entering an interface (incoming)is translated according to a NATrule before any filtering
rules and before any routing decisions. Traffic exiting an interface (outgoing)is translated
according to a NATrule after filter rules and routing decisions have been made.
NATFlow
Number Description
1 Outside.
2 Inside.
3
Incoming NATon an inside interface.
4
Incoming NATon an outside interface.
NATFlow Table Descriptions