Create a source NAT rule
This example shows how to create a source NAT rule to translate outgoing traffic from the LAN zone.
Objectives
When you complete this unit, you’ll know how to do the following:- Create a source NAT rule to translated outgoing traffic from the LAN.
- Create a firewall rule to allow outgoing traffic from LAN to WAN zone.
SNAT network diagram
Source NAT is typically used to translate outgoing traffic from the internal network to external resources on the internet. The source IP address is translated, keeping it private. The following network information is illustrative:
- Pre-NAT IP address of LAN users: 10.145.16.10/24
- Post-NAT IP address of LAN users: MASQ (IP address of the applicable outbound interface)

Here's an example:
- Source NAT from the internal network to WAN: Network LAN (10.145.16.0/24) to Any
- Firewall rule to allow traffic from LAN zone to WAN: LAN to Any