Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 2 subscribers
  • Views 1820 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Replace NAT with routing.

magd168
When my remote users connect to my AWS Sophos UTM, they are given a 10.242.0.0/16 IP address.  When they connect to the servers on the inside of the Sophos, the Sophos will NAT them to an internal address. 

How do I replace the NAT with routing?  I'm assuming it is related to my Masquerading rule.  My Masquerading rule shows Any -> Internal.   This doesn't make sense.  I would expect it to NAT my point-to-point VPN traffic too.

I have no NAT (Network Protection, NAT, NAT) rules.

Where should I look to change to routing?


This thread was automatically locked due to age.
Parents
  • 0
    Hi, you shouldn't need that Masquerading rule.

    If you do need it for some reason, replace the ANY source with something more specific such as VPN Pool.

    If you are using RFC1918 rules internally, you need a MASQ for each Internal Network -> WAN Address, or you can use SNATs.

    Barry
Reply
  • 0
    Hi, you shouldn't need that Masquerading rule.

    If you do need it for some reason, replace the ANY source with something more specific such as VPN Pool.

    If you are using RFC1918 rules internally, you need a MASQ for each Internal Network -> WAN Address, or you can use SNATs.

    Barry
Children
No Data