I've a simple configuration on XG86, Just a rule for navigation and a DNAT. If i try to reach the exposed service fails, my log say that fw rule and nat rule is correct but still reach the service. No strange routers or double nats.
Thanks a lot
Sorry for my bad English
Assuming matching NAT ID: 1 and firewall rule ID: 2 are correct.
As per the packet flow, the traffic is being forwarded to internal server 10.1.1.10 for destination port 8080, but there’s no reply coming…
Can you show screenshots of both?
I have the strong feeling, your Service is causing this issue. Double check the service, if it actually match.
Hi David Moro,
Would it be possible for you to run a packet capture on the destination IP address from the Diagnostics > Packet Capture and share a screenshot with us?
Community Support Engineer | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts If a post solves your question use the 'Verify Answer' button.
shouldn't the destination in the NAT be a network not an xg interface (one IP address)?
Thats perfectly fine. The DNAT will hit the WAN IP, you want to translate to a IP behind XG.
Yes.... but if i try to reach the exposed service it'll not work