I am using BM3.7 with latest patches and NW6 SP2, plus some post sp2
patches.

We are trying to connect to a server outside our LAN and run a
specific
application. I have created the necessary filter exceptions (very
specific;
destination host...from our source network) and tested them.

The application on the other side of the firewall needs a static
address to
return traffic to.

What I have done: I have added secondary ip addresses to the public
NIC
and used a mix of Static and Dynamic NAT.

When I am running NAT(running with or without filters), the
workstations
(using their front end application) login to remote Unix server, get
their
menu, but when you run the application, it times out.

If I disable NAT and have filters running, the workstations login and
the
application runs.

Is there something else I am suppose to configure?

Steve D.