I continue to pull my hair out replacing our sonicwall with a new watchguard. Sonicwall does things so differently it seems. Something I've noticed is that in the sonicwall NAT policies, there are actually policies that NAT a single IP address to an entire subnet. I'm not really sure why but I see traffic using this policy. From what I can tell on a watchguard, you can only NAT an ip to an ip or a subnet to a subnet but not an IP to a subnet. Does anyone know if there is a way to accomplish this on the watchguard?