Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 5787 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple Masquerading Rules from one internet network?

John Paul Hayes

Hi Folks,

 

I'm running a Sophos UTM v9.501-5 box and have a question (n00b potentially) about masquerading.

As per screen grab below, would masquerading the same internal network cause any issues? 

Also, is there any way of locally confirming that the traffic coming from this box is that of the correct external address (in this case I need to confirm its External 3 CUH - 192.168.80.182)

Thanks in advance!

JP



This thread was automatically locked due to age.
Parents
  • 0

    Hi JP,

    Masquerading rules are processed in a top-down manner. So traffic coming from the internal network should always be masqueraded by the external interface IP and not 3 CUH.

    You can confirm this by running a tcpdump on the console using 'any' for interface value and the destination ip for the host value.

    If what you are trying to achieve is load balancing between multiple WAN links, that is configured via Interfaces & Routing > Uplink Balancing or Multipath Rules

    Cheers,
    Karlos

Reply
  • 0

    Hi JP,

    Masquerading rules are processed in a top-down manner. So traffic coming from the internal network should always be masqueraded by the external interface IP and not 3 CUH.

    You can confirm this by running a tcpdump on the console using 'any' for interface value and the destination ip for the host value.

    If what you are trying to achieve is load balancing between multiple WAN links, that is configured via Interfaces & Routing > Uplink Balancing or Multipath Rules

    Cheers,
    Karlos

Children
No Data