Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 2 subscribers
  • Views 1074 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

blind NAT

axtech01
Hi Guys,

Anyone knows if Sophos UTM support feature like Blind NAT like Monowall or Pfsense ?

Can i try to DNAT to a server / PC that sit outside the firewall internal subnet but routetable via internal network.

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    Adrian, is your topology as follows?

    Internet<>[UTM]<>[router]<>[server]


    If so, then you just need a static gateway route in the UTM like '{server subnet} -> {router IP in Internal (Network)}'

    If that's not the solution, then please give us an idea of your topology including representative IP addresses. 

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Adrian, is your topology as follows?

    Internet<>[UTM]<>[router]<>[server]


    If so, then you just need a static gateway route in the UTM like '{server subnet} -> {router IP in Internal (Network)}'

    If that's not the solution, then please give us an idea of your topology including representative IP addresses. 

    Cheers - Bob




    Hi Bob,
    your understanding is correct
    The wired thing is the destination is routing table only in the UTM CLI.
    But when we perform nat on the destination the routing will stop and inform that is not arp. 

    Thanks
Reply
  • 0 in reply to BAlfson
    Adrian, is your topology as follows?

    Internet<>[UTM]<>[router]<>[server]


    If so, then you just need a static gateway route in the UTM like '{server subnet} -> {router IP in Internal (Network)}'

    If that's not the solution, then please give us an idea of your topology including representative IP addresses. 

    Cheers - Bob




    Hi Bob,
    your understanding is correct
    The wired thing is the destination is routing table only in the UTM CLI.
    But when we perform nat on the destination the routing will stop and inform that is not arp. 

    Thanks
Children
No Data
Cookie Information Banner