Got an issue with Outbound NAT. I have 2 interfaces, LAN and WAN.
WAN has an IP assigned to its interface, as well as an additional 4 virtual IPs for a total of 5 IP addresses which are used in various inbound NAT rules. I have turned on manual outbound NAT, as I need my outgoing SMTP traffic to always come from a particular IP. My outbound NAT page looks like this (obviously with real IP addresses as opposed to .x.x.): Interface, Source, Source Port, Destination, Destination Port, NAT Address, NAT Port, Static Port WAN 192.x.x.11/32 * * 25 209.x.x.62 * NO WAN 192.x.x.6/32 * * 25 209.x.x.62 * NO WAN 192.x.x.5/32 * * 25 209.x.x.62 * NO WAN 192.x.x.0/24 * * * * * NO The top 3 items are mail servers, and I want those to always use a particular IP address when communicating with the outside world (which seems to work just fine). The problem comes with rule #4-- none of my internal machines are able to communicate with the outside world (and #4 is the "auto generated rule"). I told the rule to use the "interface address" of the WAN for the NAT Address, but there doesn't seem to be any difference between "interface address" and "any" in the rule selection (which looks wrong to me), as the resulting rule looks exactly the same (bug?). When I specifically choose one of the virtual IPs, rule #4 THEN looks like this: WAN 192.x.x.0/24 * * * 209.x.x.61 * NO ... and then my internal machines are able to communicate to the outside world. The interface address is 209.x.x.55-- so when I choose "interface address," shouldn't the rule be: WAN 192.x.x.0/24 * * * 209.x.x.55 * NO Or maybe WAN 192.x.x.0/24 * * * (WAN) * NO ?? Or am I doing something wrong? Congrats on a great release, by the way. :) Dimitri Rodis Integrita Systems LLC --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
