Ok so we have a UTM 9 device at a main office. It has two connections to the internet. One over comcast, one over AT&T fiber.
We have a DNAT rule that forwards all https traffic to an internal server with an ip of 192.168.1.X
Normally the rule is set up to go through the AT&T line to the device, but, out of all sites, one cannot seem to get to this server over the AT&T public interface IP. If I change the dnat rule above to come in through the comcast connection, and of course the site types the ip address of the comcast public interface on the sophos, it works fine.
What I have noticed is that the two public IP's, the site, and the main office, look to be on the same subnet. This has to be the issue; I've tried adding SNAT to force traffic to come back out through AT&T on the sophos, but it doesnt help.
If i disable the comcast connection on the sophos device, the site that has all the problems can then get in over the AT&T public interface on the sophos, no problems.
Kind of confused at this point. What am I missing?
I look at the logs and I dont see anything out of the ordinary. No packets being dropped. Is this a routing issue?
This thread was automatically locked due to age.
