I will apologize for the crude drawing and thank everyone in advance for any help or advice.
We have a 3rd party device at our remote locations. Those devices sit behind a managed router and they have been disabling the ability to set the main port statically. This is causing issues because we have several services that need to poll data from the device and IPs change occasionally. However they do provide a local port to access the data. My idea was to configure a port on the XG to the same subnet as the managed router and do a NAT translation with a static IP on our LAN.
I am relatively new to Sophos and have been trying to get this to work with no success. My goal was to translate 172.31.31.26 to 192.168.200.7 so that we could access the data from our main offices subnet and have any issues. We could then standardize this across our network.
First I set port 4, which is connected to the 3rd party router, to static 192.168.200.8.
Next I created a NAT rule from the source zones of WAN & LAN and allowed the client networks of the local LAN and Main Office LAN.
I put the Destination host as Port 4 and allowed any service.
Finally I forwarded it to the routers static IP 192.168.200.7 with the LAN protected zone.
I enabled Rewrite source address, used MASQ, and created reflexive rule.
I have not had any success trying slight variations of this. Nor do I see any traffic on that port.
Could someone try and point me in the right direction?
This thread was automatically locked due to age.
