23-20
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 23 Configuring Network Address Translation
NAT Policies on Security Devices
Add/Edit Translation Exemption (NAT-0 ACL) Rule Dialog Box
Use the Add/Edit Translation Exemption (NAT-0 ACL) Rule dialog box to define and edit translation
exemption rules on PIX, FWSM and pre-8.3 ASA devices in router mode, and FWSM 3.2 devices in
transparent mode.
Navigation Path
You can access the Add/Edit Translation Exemption (NAT-0 ACL) Rule dialog box from the Translation
Exemptions (NAT 0 ACL) tab. See Translation Exemptions (NAT 0 ACL), page 23-19 for more
information.
Related Topics
Configuring NAT on PIX, FWSM, and pre-8.3 ASA Devices, page 23-17
Translation Rules: PIX, FWSM, and pre-8.3 ASA, page 23-18
Advanced NAT Options Dialog Box, page 23-28
Field Reference
Table23-7 Add/Edit Translation Exemption (NAT-0 ACL) Rule Dialog Box
Element Description
Enable Rule If checked, the rule is enabled. Deselect this option to disable the rule
without deleting it.
Action Select the action for this rule:
exempt – The rule identifies traffic that is exempt from NAT.
do not exempt – The rule identifies traffic that is not exempt from
NAT.
Original: Interface Enter the name of (or Select) the device interface to which the rule
applies.
Original: Sources Enter IP addresses for (or Select) the source hosts and network objects
to which the rule applies. Multiple entries must be separated by
commas.
Note that this parameter is displayed in the Translation Exemptions
(NAT 0 ACL) table under the column heading “Original Address.”
Translated: Direction The rule can be applied to Inbound or Outbound traffic, as specified
with this option.
Traffic flow: Destinations Enter IP addresses for (or Select) the destination hosts and network
objects to which the rule applies. Multiple entries must be separated by
commas.
Category To assign the rule to a category, choose the category from this list.
Categories can help identify rules and objects using labels and
color-coding. See Using Category Objects, page6-12 for more
information.
Note No commands are generated for the Category attribute.
Description Enter a description of the rule.
Advanced but ton (FWSM
only)
Click to open the Advanced NAT Options Dialog Box, page 23-28 to
configure advanced settings for this rule.