For multiple smaller customers I have one default SNAT with MASQ to enable internet access and usually two DNAT rules.
These rules do not interfere.
On multiple occasions it happend that the DNAT rules did not work although configured correctly. All i had to do in order to make them work again was changing their position to the top priority.
It happened on different v18 Firmware and Hardware.
It happend on initial configuration but sometimes even for existing and previously working rules. In both cases the above mentioned "trick" fixed the issue.
Can someone explain to me why the positioning of NAT-rules does matter if they do not interfere with one another?
Our company wants to stop deploying UTM and only work with XG in the future but with issues like that we loose trust in it.
This thread was automatically locked due to age.
