NAT from trusted to internal
I'm new to watchguard and wonder, how to forward a request from a trusted interface to an internal ip an an other (vlan) interface.
A branch is connected via MPLS to this trusted interface. If a client on this branch does a DNS requests to 192.168.156.1 (internal ip), I want to forward this to 192.168.156.2 (internal ip). SNAT seems not be an suitable option, since it only works for external and optional interfaces. I can NOT change the IP clients behind this trusted interface request (in this case to 192.168.156.2).
Instead I must handle it on our side and forward it to the correct destination. There should be a better option than chaning this interface from trusted to optional or external, right?