NAT can be enabled on any interface located in settings -> interface table. An additional option "Exclude this computer from NAT" is also available. As mentioned in previous chapters, NAT's firewall capabilities are based on its stateful inspection filter. When the WinRoute computer is 'excluded from NAT', traffic initiated from that machine will not be recorded. Therefore, incoming traffic with a destination address of the WinRoute computer will be allowed even though a NAT entry does not exist. This option should only be used in rare circumstances where certain applications do not function properly through NAT or you are behind another NAT product. For all intensive purposes this option is NOT RECOMMENDED!