SonicWALL NSA 5000/4500/3500 Getting Started Guide Page 41
Before configuring NAT Policies, you must create all Address
Objects associated with the policy. For instance, if you are
creating a One-to-One NAT policy, first create Address Objects
for your public and private IP addresses.
Address Objects are one of four object classes (Address, User,
Service and Schedule) in SonicOS Enhanced. These Address
Objects allow for entities to be defined one time, and to be re-
used in multiple referential instances throughout the SonicOS
interface. For example, take an internal Web server with an IP
address of 67.115.118.80. Rather than repeatedly typing in the
IP address when constructing Access Rules or NAT Policies,
Address Objects allow you to create a single entity called “My
Web Server” as a Host Address Object with an IP address of
67.115.118.80. This Address Object, “My Web Server”, can then
be easily and efficiently selected from a drop-down menu in any
configuration screen that employs Address Objects as a
defining criterion.
Since there are multiple types of network address expressions,
there are currently the following Address Objects types:
• Host – Host Address Objects define a single host by its IP
address.
• Range – Range Address Objects define a range of
contiguous IP addresses.
• Network – Network Address Objects are like Range
objects in that they comprise multiple hosts, but rather than
being bound by specified upper and lower range delimiters,
the boundaries are defined by a valid netmask.
• MAC Address – MAC Address Objects allow for the
identification of a host by its hardware address or MAC
(Media Access Control) address.
• FQDN Address – FQDN Address Objects allow for the
identification of a host by its Fully Qualified Domain Names
(FQDN), such as www.sonicwall.com.
SonicOS Enhanced provides a number of Default Address
Objects that cannot be modified or deleted. You can use the
Default Address Objects when creating a NAT policy, or you can
create custom Address Objects to use. All Address Objects are
available in the drop-down lists when creating a NAT policy.