SunScreen 3.1 Lite does not support the following SunScreen features. A SunScreen 3.1 Lite firewall:
Cannot create and cannot be made the primary Screen in in a CMG group.
Cannot support more than two interfaces; the filtering mechanisms ignore any other interfaces.
Cannot support more than ten unregistered IP addresses that can be translated to registered address using Network Address Translation (NAT); it is limited to two NAT rules.
Ignores the time-of-day field. It makes all rules active while that policy is active.
Does not support and cannot create the ADMIN, HA, or STEALTH interfaces.