Transform Set Window (IPSec Encryption and Authentication)
Step 10 (Optional) The Address Translation Exemption window, shown in Figure
15-36, identifies local hosts/networks that are to be exempted from address
translation. By default, the Security Appliance hides the real IP address of
internal networks from outside hosts through dynamic or static NAT. The
security provided by NAT helps to minimize the risk of being attacked by
untrusted outside hosts, but it is inappropriate for those who have been
authenticated and protected by VPN.