I have searched and cannot seem to find an answer on this so maybe it is not possible. But I have some hosts in a DMZ off a Netscreen 25. These hosts have MIP (mapped IP's). I want a couple of the hosts to be able to send outbound SMTP traffic. I set a policy from DMZ to untrusted for MAIL/SMTP and also to NAT to the egress interface IP. The policy logs do not show any traffic on this policy.
My basic question is: how do I permit traffic to originate from the DMZ to the untrusted network?
I am able to permit traffic to cross from untrusted to DMZ using the MIPs.
Thanks for the help!