=============== FIXED PROBLEM========================
Just wanted to update anyone who is new to Astaro like I was. Really simple, the NAT table rules, I had to add the Source as the Firewall itself. Simple and easy fix.
Recently, converted the whole Comcast HSI with D3G router to the 10.x.x.x network. Then one of the ports connects to the Astaro which does all the routing internally on a 192.x.x.x network. Works like a champ.
=============== FIXED PROBLEM========================
We just got Comcast HSI at work and its giving us some problems with ports. We tried to configure as much as we could on the modem/router they gave us.
The modem has its own public IP address, and from internally within the LAN, we cannot get to a specific port we need for our programs. We cannot use local IPs or Host Names due to our employees always being on the road so the programs need to work from outside the office and inside. The setup is abit different. Comcast gave us a modem/router gateway. So that does the main routing and light firewall protection, while the Astaro is setup as a bridge. Externally, everything works just fine. Port forwarding works great, just internally in the LAN has problems.
All I want to do, is have the Astaro reroute all traffic from a certain IP address, to another. I've setup a DNAT/SNAT rule.
Traffic selector: Internal (Network) → AnyPort → 7x.x.x.97
Destination translation: 192.x.x.10 → 65100
So any internal traffic who tries to hit that IP address, should be re-routed back to our MainServer that hosts the program. But it's not working.
I can even see in the logs
"11:16:56 Connection using NAT TCP
192.x.x.12 : 1935 → 7x.x.xx.97 : 8100
[SYN] len=48 ttl=128 tos=0x00 srcmac=00:1"
But it doesn't reply.
NOTES: 192.x.x.12 is my computer
192.x.x.10 is mainserver
7x.x.xx.97 is public address pointing to the router.
Wondering if anyone could help here before I contact Astaro.
THANKS
This thread was automatically locked due to age.