Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 4 subscribers
  • Views 4765 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do I write a NAT rule for a range of web servers?

JonTalbot-Jones

Hi,

I have a UTM 9 Model SG210 Firmware 9.111-7

It has one public interface and one private.

The public interface is on xxx.xxx.xxx.4 and the private on zzz.zzz.zzz.4.

I need to create a NAT rule to map xxx.xxx.xxx.10 - 149 to zzz.zzz.zzz.10 -149 on port 80 and 443 (this will be a direct map, public to private)

What's the best way of doing this without writing rules for every host?

Also will I need to create an additional address for every web server on the WAN interface?

Thanks in Advance.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to JonTalbot-Jones

    Using network definitions you can use 1:1 NAT to map an entire range to another range. You have to create 2 network definitions (1 for public and 1 for private) and I think you cannot use the predefined Internal (Network) range therefore you need to create a definition.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Cookie Information Banner