![nat loopback nat loopback](https://i2.wp.com/www.davidwesterfield.net/images/natloopbackscan.jpg)
![nat loopback nat loopback](https://i0.wp.com/therubyist.org/wp-content/uploads/2021/02/cert-manager-coredns-nat-letsencrypt-new.png)
Use this to perform source NAT (SNAT) for outgoing traffic. IP addresses of the original source objects are translated to the IP addresses that you specify. To create an inbound NAT rule when the inbound IP address is unknown, select Any. Specify the pre-NAT source objects of outgoing traffic. You can select the original source, destination, and services or create new ones. Translated source, destination, and services are the post-NAT entities of traffic when it exits Sophos Firewall. Original source, destination, and service are the pre-NAT entities of traffic when it enters Sophos Firewall. Specify the translation settings for source, destination, services, and interfaces to match traffic flowing through interfaces and VPN tunnels. If you select Automatic, the firewall rule is added to an existing group based on the first match with rule type and source-destination zones. The firewall rule will belong to this group. Go to Rules and policies > NAT rules, select IPv4 or IPv6 and click Add NAT rule.You can specify health checks to enforce the load balance and failover settings. NAT method in destination rules allows you to enforce load balancing and failover for internal hosts. To create a destination NAT rule, specify the original and translated destinations and services, and the inbound and outbound interfaces. To create a source NAT rule, specify the original and translated sources and the inbound and outbound interfaces. You can also specify loopback policies to translate traffic from internal sources to internal servers. You can specify source NAT rules for traffic originating from the specified source address and destination NAT rules for traffic to the specified destination address. You can create NAT rules to modify the IP addresses and ports for traffic flowing between networks, generally between a trusted and an untrusted network. Sophos Connect client Sophos Connect client.SSL VPN (remote access) SSL VPN (remote access).IPsec remote access group authentication.IPsec (remote access) IPsec (remote access).Create an L2TP remote access connection.Create a remote access SSL VPN with the legacy client.Configure remote access SSL VPN with Sophos Connect client.Configure IPsec remote access VPN with Sophos Connect client.SSL VPN (site-to-site) SSL VPN (site-to-site).Comparing policy-based and route-based VPNs.Create IPsec route with NAT over site-to-site IPsec VPN.Configuring NAT over a Site-to-Site IPsec VPN connection.