Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 11 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1097 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can't select bridge member interface in NAT rule

core_memory

For example, in the following configuration.

PortC and PortD can't be selected as the inbound interface of the SNAT rule.
br0 can be selected, but that rule does not apply.
If select Any, that rule will be applied.



This thread was automatically locked due to age.
Parents
  • 0

    Is PortC and D your LAN? Because you should not do SNAT based on Incoming interface. The better approach is outbound interface. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    That's not always the case.
    Besides, this issue is only with the bridge interface.

  • 0 in reply to core_memory

    There seems to be a technical limitation, which i never discovered in the past months. Basically because i never did a SNAT based on the filter of the interface. I cannot come up with a scenario, why you would do this in a bridge scenario. 

    So what is the use case of doing this? Why should a SNAT be applied on only one port and not the other port, if traffic is generated by both ports? 

    __________________________________________________________________________________________________________________

Reply
  • 0 in reply to core_memory

    There seems to be a technical limitation, which i never discovered in the past months. Basically because i never did a SNAT based on the filter of the interface. I cannot come up with a scenario, why you would do this in a bridge scenario. 

    So what is the use case of doing this? Why should a SNAT be applied on only one port and not the other port, if traffic is generated by both ports? 

    __________________________________________________________________________________________________________________

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?