Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 6 subscribers
  • Views 7520 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NAT over MPLS to remote networl

Doug LaPlant

Hello, New Sophos users here.

 

I've got two sites connected by MPLS. One site has my internet connection, the other site has a server I want to allow traffic to from the internet. I've tried standard NATs and MASQ / firewall rules but not having any luck. From a host on the same site as my internet connection I can ping and telnet to the port on the other site, just not from the internet. Also NAT from internet to a local address and it worked fine.

 

Any help is greatly appreciated.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

     

    so the WAN-interface IP of your UTM is different from your public WAN-IP? (In your picture your UTM has 70.132 and you created a NAT rule for traffice to 70.133)

     

    Could you try creating a NAT rule for traffic from 70.132 and test it again?

     

    Regards,

     

    Ole

  • 0 in reply to Ole Heydt

    Hi Ole,

     

    The primary address is 70.132, 70.133 is an "additional address". the ISP provides a /28 (.128 - .142 if I recall correctly). I did try to use the primary address 70.132 as a testing step and still no good.

     

     

    Thanks,

    Doug

Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML