Routes from primary and secondary External

Pythagor · November 2019

Hi, my ISP gives me 2 addresses -XXX.XXX.XXX.22 and XXX.XXX.XXX.23. I put .22 as primary and .23 as secondary on External. Now i need to route request came to XXX.XXX.XXX.22 port 443 to internal 10.0.0.1 and request came to XXX.XXX.XXX.23 port 443 to internal 10.0.0.2. what will be the right way to do it?
thanks

Bruce_Briggs · November 2019

Use SNAT to do this.

Configure Static NAT (SNAT)
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/nat/nat_static_config_about_c.html

Pythagor · November 2019

Right, but rules like "source - XXX.XXX.XXX.22 destination - SNAT1 " and "source - XXX.XXX.XXX.23 destination - SNAT2 " do not work on the same port as i discovered.

Bruce_Briggs · November 2019

You configure 2 SNATs and 2 policies - 1 SNAT per policy.

Pythagor · November 2019

That's what i tried. first rule is "source - XXX.XXX.XXX.22 destination - SNAT1 ", second is "source - XXX.XXX.XXX.23 destination - SNAT2 ". SNAT1 is "External > 10.0.0.1" and SNAT2 is "External > 10.0.0.2". Didn't do the trick. Does it look right?

Bruce_Briggs · November 2019

Nope - you got this all wrong

Policy From: Any-external To: SNAT

SNAT: XXX.XXX.XXX.23 -> 10.0.0.2

Pythagor · November 2019

i see. thank you so much!

Routes from primary and secondary External

Comments