Welcome, Guest. Please login or register.
Did you miss your activation email?
Monday 23 December 2024, 09:23:19 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Can't get SNAT to work
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Can't get SNAT to work  (Read 11526 times)
TheEricHarris
Full Member
***
Offline Offline

Posts: 86


« on: Thursday 30 December 2010, 05:52:44 pm »

Rules that were imported from a backup work fine in my 2.4.1 box.  But if I try to create a new rule, it doesn't work.  I need SNAT to work.  I can get port forwarding to work when my server uses ENDIAN as it's default gateway, but that is not what I want.

In the previous version, there was a checkbox for SNAT and it automatically created the SNAT rules.  I've tried to manually create it and it doesn't work.

Anyone having this same issue?  Is there a workaround?
Logged
TheEricHarris
Full Member
***
Offline Offline

Posts: 86


« Reply #1 on: Friday 31 December 2010, 04:01:07 am »

Here is some more info.

I have two Endian Firewalls: 172.30.100.100 and 172.30.100.200

.100 is my primary firewall that is the default gateway in my level3 switch, so all outbound traffic goes through this.

I am trying to port forward an external IP (70.10.10.10) with port 443 to my Exchange server (172.30.100.31) on my secondary firewall (172.30.100.200).

So for this to work, I need to use SNAT because the traffic is coming in from the firewall that is not the default gateway.  I've had this working 2.2 with no issues.

Logged
TheEricHarris
Full Member
***
Offline Offline

Posts: 86


« Reply #2 on: Friday 31 December 2010, 05:46:56 am »

Here are some screen shots

In this test, I'm trying to get http://72.16.139.50:80 to port forward to 172.30.100.40:80.

SNAT does not work.  The Default GW on 172.30.100.40 is set to another Endian firewall box.
Logged
TheEricHarris
Full Member
***
Offline Offline

Posts: 86


« Reply #3 on: Sunday 02 January 2011, 08:01:39 am »

Got new rules to work by recreating them exactly like the imported ones (had to reinstall 2.4 and import my 2.2 backup).  Oh well!
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.078 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com