Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 1080 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Masquerading question

wingman
Hi All

I would like to confirm whether the following is normal. I have set Masquerading rule from internal network to wan (external)

However, when checking the bandwidth monitor I always see internal ip

Attached image is for eth2 (wan) interface. I am downloading the 7.501 image at the moment and that's why you see the connection to 213.x.x.x

86.156.24.79 is my WAN address

How can I verify that my internal ips are not shown on the outside world?

Thanks


This thread was automatically locked due to age.
  • 0
    I think when you see your external IP as a source, that's because the traffic is coming from a proxy.  When it's traffic allowed by a PF rule, then you see the true origin. If your internal IPs were being sent, you wouldn't get a response, so the packets being sent MUST be masqueraded with the IP of your 'External (Address)'.

    Don't you think?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hi, you can run tcpdump on the external interface if you want to check.

    Barry
  • 0
    thanks guys.it make sense!

    PS I confirmed with tcpdump [:)]
Cookie Information Banner