Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 9135 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Network Rules and 1-1 NAT

DavidPeterson

So... after wasting a few hours trying to decipher the scattered info on 1-1 NAT and the various firewall rule options, it appears that only Business Application rules will work.  The description of the Network rule for use when "you want to control traffic by source, service, destination, zone" (administrator's guide) is not accurate or complete.  If you do this you can make the traffic go out on the desired public IP, but the firewall does not accept the return on that IP.  Am I missing something? There is no reflexive option for network rules but you'd think based on the described use that would at least be the default behavior.  This has been very frustrating.  In addition to all the problems with the GUI things just don't make a lot of sense.  Why does the network rule option even exist?



This thread was automatically locked due to age.
Parents
  • +1

    David,

    Network rules are used to control traffic between zones but not to publish services.

    It is confusing a little bit because users can create network rules to allow traffic from wan but traffic will not be considered.

    From v15 they improved this aspect and I am sure they will improve it into next releases.

Reply
  • +1

    David,

    Network rules are used to control traffic between zones but not to publish services.

    It is confusing a little bit because users can create network rules to allow traffic from wan but traffic will not be considered.

    From v15 they improved this aspect and I am sure they will improve it into next releases.

Children