Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 2670 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNAT

Orlando
Im trying to figure out how to do a snat for one of my ips and i cant get it to work for the life of me.

btw this setup worked fine when i was using ipchains and iproute2

this is my setup.
i have ip addresses from 216.207.131.130 to 216.207.131.138
the firewall right now is 216.207.131.138 = extip
external interface is ext
internal interface is intr
internal network is HOME
made an entry for 216.207.131.131 called 216.207.131.131
im trying to use snat to pass that to 192.168.100.10. and i think ive tried every combination possible in the snat screen and i cant get to it from the outside any ideas how this is done?

Orlando


This thread was automatically locked due to age.
Parents
  • 0
    Hi Orlando, 

    i hope i understood you correct.

    You are trying to redirect an incoming connection going to 216.207.131.131 you woukld like to send it to 192.168.100.10.
    Correct ?

    SNAT (Source NAT - rewriting of the source adress) is used to redirect Outgoing connections
    DNAT (Destination NAT - rewriting of the destination adress) is used to redirect outgoing traffic.

    Add to networks:

    net1 216.207.131.131 255.255.255.255
    net2 192.168.100.10 255.255.255.255

    Add a DNAT rule

    net1 HTTP net2 HTTP
    to redirect incomming HTTP connection to an internal Webserver at 192.168.100.10.

    Dont forget to add an packet filter rule to allow this.

    Any HTTP net2 allow

    I hope that helps.

    kind regards

    gert
Reply
  • 0
    Hi Orlando, 

    i hope i understood you correct.

    You are trying to redirect an incoming connection going to 216.207.131.131 you woukld like to send it to 192.168.100.10.
    Correct ?

    SNAT (Source NAT - rewriting of the source adress) is used to redirect Outgoing connections
    DNAT (Destination NAT - rewriting of the destination adress) is used to redirect outgoing traffic.

    Add to networks:

    net1 216.207.131.131 255.255.255.255
    net2 192.168.100.10 255.255.255.255

    Add a DNAT rule

    net1 HTTP net2 HTTP
    to redirect incomming HTTP connection to an internal Webserver at 192.168.100.10.

    Dont forget to add an packet filter rule to allow this.

    Any HTTP net2 allow

    I hope that helps.

    kind regards

    gert
Children
No Data
Unfiltered HTML