Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 2 subscribers
  • Views 762 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

avoid snat rule for internal to DMZ traffic

BSavage
I have an https SNAT rule that allows my internal traffic to all out the external and SNAT's it to the external. The problem is when my internal traffic tries to https to the DMZ, the SNAT rule applies, and the DMZ hosts see traffic coming from the external IP. How can I set up a rule to allow internal hosts to get to the dmz and avoid the https SNAT rule? Much appreciated if someone has a tip. Thanks!


Brian


This thread was automatically locked due to age.
Parents
  • 0
    Hi,

    In your snat rule are you currently using "ANY" or the Internet object?

    If using "ANY" try switching it to "Internet" and then I believe it won't change the source when the traffic goes to the DMZ.
Reply
  • 0
    Hi,

    In your snat rule are you currently using "ANY" or the Internet object?

    If using "ANY" try switching it to "Internet" and then I believe it won't change the source when the traffic goes to the DMZ.
Children
No Data