SNAT

I'm trying to redirect traffic from a specific external machine (say 1.2.3.4) on our External Network to a specific computer on our Trusted Network (say 4.5.6.7). I can get this process to work with either SNAT+Dynamic NAT or 1-to-1 NAT to a machine (say 4.5.8.9) on an Optional Subnet, but not to a machine (say 4.5.6.7) on the Trusted subnet. I can't find any documentation stating the Trusted Port won't work. Any suggestions?

Answers

  • James_CarsonJames_Carson WatchGuard Representative

    Hi @brg

    You can make multiple SNATs so long as there's not also an associated 1-to-1 NAT for that IP.

    For instance, your policies would need to look like

    Rule -- From -- To --
    1. 1.2.3.4 -- SNAT 4.5.6.7
    2. Any-External -- 4.5.8.9

    If this isn't working, I'd suggest creating a case using the support center button on the top right of this page so that a technician can review your configuration and help.

    Thank you,

    -James Carson
    WatchGuard Customer Support

  • edited August 12

    Look at the subnet mask & default gateway on 4.5.6.7

  • I appreciate the prompt response. My configuration was as James suggested but Bruce_Briggs was correct in that my subnet mask on 4.5.6.7 was incorrectly set. I've updated and voila. Thank-you both for the help!

Sign In to comment.