This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNAT Rule applies to IPsec packets

From the User's Manual:

Rule applies to IPsec packets (only with SNAT or Full NAT mode): Select this option if you want to apply the rule to traffic which is going to be processed by IPsec. By default this option is not selected, thus IPsec traffic is excluded from source network address translation.

I just saw that this option has been available at least since V8.3. Has anyone used this? It's not clear to me how/why this would be used. Does this, in effect, let you change the source of a packet already inside an IPsec tunnel?

Cheers - Bob

This thread was automatically locked due to age.

Parents

0 BarryG over 12 years ago

Hi Bob,
I haven't tried that (and I don't remember seeing it).

I was trying to do an SNAT previously on a site-to-site tunnel with 7.5 and didn't have any luck.
Maybe I'll try it again soon, I will be replacing the 7.5 firewall with 9.006 next week.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 12 years ago

Hi Bob,
I haven't tried that (and I don't remember seeing it).

I was trying to do an SNAT previously on a site-to-site tunnel with 7.5 and didn't have any luck.
Maybe I'll try it again soon, I will be replacing the 7.5 firewall with 9.006 next week.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data