We setup FirePower with NAT(PAT I think) for a group of computer so that they can access internet.
However, we want to allow all computers able to visit a list of websites.
Is it possible and how?
Solved! Go to Solution.
You'll at least need to PAT traffic from the internal lan, hiding traffic behind the outside interface. You don't need a static NAT per host if that is what you were implying. Restrict the outbound traffic using the options I previously metioned.
The other alternative is to use a proxy server, only this server would then need a NAT and outbound firewall rules. You can restrict outbound traffic on the proxy from the internal hosts ip address/username etc.