yes, i guess that's the issue...
no, for NAT i declared all source address of 10.0.0.0/8, because i actually have several networks using this internet connection through this router...
so now, how do i get NAT to work for traffic going to this public network.... the router i have set up on it is set to block private networks, i don't really have any desire to change that... i'd like everything internal going to eth3 network to masquerade as the IP on eth0...
trying to think how i would do that...
EDIT: so i added another source NAT rule, masquerade to eth3, source address 10.0.0.0/8, but destination address-group ADDRv4_eth3, so at least it would masquerade as the IP on eth3 to that network...
but that doesn't seem to work... i'm assuming it's hitting the routing table before these source NAT rules?
maybe this is something that should be handled in the FW policies...