Is there a way to set up a NAT exemption rule on the Zeroshell? We’re trying to come up with an implementation where the Zeroshell box is the default gateway for one of our client’s networks and it uplinks to a cable connection and a WAN connection back to our network. We have been using the Zeroshell to NAT at the cable connection and keep the connection towards our WAN unNAT’ed. We would then NAT the traffic from the client at our WAN edge using a Cisco ASA firewall. We’re testing a solution where the client’s servers would be NAT’ed at the Zeroshell box for the connection going towards our WAN instead of having it NAT’d at the ASA. The problem we would then have is being able to hit the client’s computers directly over their 10.x.x.x internal IP addresses. If we could set up NAT exemption on the Zeroshell, we would be able to reach the client directly over their 10.x.x.x addresses from a LAN inside our core network. Please let me know if anyone has a way to do this or if you need more information. Thanks!