Hi there
I have XG135 V17.5 which I have NAT on the firewall current ,. recently we change out IP address to /29 and I add a new alias IP on current GW address in same range.
I have 4 range in organization and we want to subnet A NAT on main physical IP and subnet B , C, D NAT on Alias IP , i create 2 NAT Profile and separate traffic to be SNAT on different IP (main and alias IP )
when i change the original default rule to new created NAT MASQ address which is equal to main interface IP it is working as it should be.
I clone the current rule and add the add the source address with Subnet B ,C ,D as soon as i save the rule the huge packet loss will start on all organization
i check the client IP and it is NAT based on what i planned but packet loss exist on all subnets
as soon as i disable the second rule related to subnet B,C,D packet loss will stopped.
i did another test and on second rule start add subnet one by one , for subnet B , there is not packet loss when add subent C , D again packet loss start and even by removing the subnet from the range packet loss still exit and just by reboot the firewall or disable the second rule it will stopped , any idea why it happened.
i check the devise load on monitoring section and there is not significant change on output graphs
This thread was automatically locked due to age.