So my company/department is converting firewalled public address to NAT address. One reason is to get more addresses out of what we where allotted. Second is to give ourselves a second layer of protection(firewall), from the internet.
The question is how to handle all the public IP addresses? My first thought was to do many to many NATing, but is there any benefit? Obviously for specific things, i.e. server, one-to-one, in some case. but when it comes to the LAN, random printers, devices, and workstations, is there an difference from a one-to-many or many-to-many? Mainly focusing on performance and security? Lastly if if many-to-many is the solution home many is best, should i through all my extra public addresses at the pool or just a handful?