I have Sophos UTM running with 5 pub ip's and a 2 port NIC for LAN and the 2nd port goes to the WAN port on a Draytek 2925.
I need to NAT all traffic from one pub ip through to the Draytek WAN, there is also a Lan to Lan IPSEC tunnel from this Draytek to a 2nd Draytek offsite.
I have set up a masq rule and an SNAT & DNAT rule which seemed to work, hosts behind the drayek could browse the web and the IPSEC tunnel connects and I can ping, RDP & access shares over the Draytek VPN.
But I cannot browse web servers on the remote LAN from hosts behind the draytek over the VPN. I am trying to find out where the issue is as it seems weird that everything else seems to work except https & https. On the Draytek VPN it doesnt apply the firewall to Lan to Lan VPN's so the only other place to look is sophos UTM and i cant see any obvious issues. Like i said the IPSEC tunnel is connected so surely traffic is encapsulated in that?
Should I be using a different NAT method on the UTM for this scenario? I am Natting one pub ip to a seperate port of a NIC which then goes directly to the Draytek WAN port? How does 1:1 NAT & Full NAT work? I cant find any decent articles explaining how to use these?
Can anyone help?
Thanks
JK
This thread was automatically locked due to age.
