When NAT is not enough
While the majority of cases in simple and small environments can be handled by automatic NAT defined in objects’ properties, with increasing scale and complexity, we will have to resort to manual NAT rules.
Note
The information in this section should be used for reference only since it requires the presence of an access control policy, which we have not yet created.
Let’s look at a few more complex examples of manual NAT implementation that, in addition to the creation of NAT rules, might require a few Gaia configuration changes.
Many-to-less
If your internal networks are larger than Class C, using the Hide behind IP address option described in the previous section might not be feasible. You can still do that by representing your large network as several ranges, each with its own public IP in the NAT properties, but this is a rather tedious process.
An alternative way to handle this issue with greater flexibility is with the...
