I'm trying to redirect traffic from a specific external machine (say on our External Network to a specific computer on our Trusted Network (say I can get this process to work with either SNAT+Dynamic NAT or 1-to-1 NAT to a machine (say on an Optional Subnet, but not to a machine (say on the Trusted subnet. I can't find any documentation stating the Trusted Port won't work. Any suggestions?


  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @brg

    You can make multiple SNATs so long as there's not also an associated 1-to-1 NAT for that IP.

    For instance, your policies would need to look like

    Rule -- From -- To --
    1. -- SNAT
    2. Any-External --

    If this isn't working, I'd suggest creating a case using the support center button on the top right of this page so that a technician can review your configuration and help.

    Thank you,

    -James Carson
    WatchGuard Customer Support

  • Options
    edited August 2019

    Look at the subnet mask & default gateway on

  • Options

    I appreciate the prompt response. My configuration was as James suggested but Bruce_Briggs was correct in that my subnet mask on was incorrectly set. I've updated and voila. Thank-you both for the help!

Sign In to comment.