Hi,
I have a scenario, where my ISP gives us 02 interfaces being primary (WAN1) and secondary (wan2).
Above these WANs it routes some ips to them, so in case the primary fails, the secondary continues to serve these ips.
That way, I can put a certain network to go out (NAT) through a certain ip, without having to associate this ip directly to a WAN interface, as well as making a DNAT to some server through that ip.
That up to version 17 works without any problems.
But I can't reproduce this in version 18, when trying to use one of those IP that isn't associated with an interface directly, it just doesn't work.
Ex:
Wan1: 200.200.200.200/30
Wan2: 201.201.201.201/30
IPs with static route by ISP: 100.100.100.0/24
In v17 i can set a VLAN (on LAN interface) to use any of these ip (100.100.100.0/24) to nat and dnat without need to create a alias in interfaces. So with wan1 is down, the traffic from internet can reach 100.100.100.0/24 over wan2.
Sophos receive the traffic because a static route on the ISP, so a rule on Sophos deal with the traffic.
In v18, I create a firewall rule and a nat rule, but in nat rule with i try to set the "Translated source (SNAT)" or "Override source translation (SNAT) for specific outbound interfaces" to use a IP from these block (out from wan interface) this not work.
This thread was automatically locked due to age.
