Can someone either explain the concept of a NO NAT config in a PIX 506 or supply me w/ a good configuration example? I don't see how this can be a secure method. If I had an Access-List 101 I would have to permit 0.0.0.0 ---> the same public address. Also, wouldn't I need a static mapping from public address ----> to ----> public address? Does NO NAT confuse anyone else out ther?