Hello,
i have the following problem when creating a tunnel between two networks that share internal LAN:
Network A LAN: 192.168.0.0/24
Network A DMZ: 192.168.10.0/24
Host A DMZ: 192.168.10.1
Network B LAN: 192.168.0.0/24
UTM on network B
LAN B needs to access Host A in the DMZ, that's it.
I only have control over Network B's endpoint(sophos) and can request tunnel changes, but that's it, i can't change subnetting or FW/NAT rules on "A".
There's a tunnel betwwen LAN B and DMZ A.
Initial problem was that when the tunnel came up, their entire LAN A got dropped as all the sudden the tunnel definition got precedence.
So i made a "fake lan" on the UTM 192.168.110.0/24 and we remade the tunnel that way. Now it is Fake LAN B --- DMZ A
Problem is that now i'm stuck on how do i make LAN B network access host A.
BUT SNAT does not let me chose networks as "Change the destination to:" and i also can't masquerade the entire LAN as that masq is already used for the internet conection.
i've read How to tunnel between two ASGs having the same LAN network range but it only applies to half of that article and i'm not clear on how to translate it to my specific problem.
How can i solve this(only on UTM side ofc)?.
This thread was automatically locked due to age.
