This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Full NAT or suggestion?

Hi,

currently have two WAN interfaces with same ISP.
INTERNAL(eth0) - WAN1(eth1)
DMZ(eth4) - WAN2 (eth2)
(currently using policy routing for secondary gateway)

I have a webserver that is in the DMZ and can be accessed fine through DNAT from the outside world.

the problem is when internal addresses try to access the webserver through the secondary WAN2.

looking for help setting up the NAT to allow the following:
internal addresses --> secondary wan --> dmz --> webserver

any help would be greatly appreciated.

This thread was automatically locked due to age.

Parents

0 apijnappels over 11 years ago

You need a full-nat rule for that. The source needs to be changed to be coming from UTM itself.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 apijnappels over 11 years ago

You need a full-nat rule for that. The source needs to be changed to be coming from UTM itself.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data