Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem snat between directly connected interfaces

Hello community,

We have recently transitioned from the SG 230 UTM to the XGS 2300, and we've recreated all our firewall rules from the UTM for the new XGS device.

All NAT rules were also recreated.

While DNAT rules are functioning perfectly, we are encountering issues with SNAT and MASQ rules. The counter for the SNAT rules consistently shows zero.

Although traffic from "LAN" to "WAN" is working, we are not seeing any SNAT rules being utilized in the traffic log. Despite having a rule in place and the correct WAN IP from one WAN interface appearing in the "Src NAT IP" column of the traffic log, the SNAT rules do not seem to be effective.

Additionally, we became confused as we saw that connections between directly connected interfaces on the firewall were being source NATted, not just routed.

We didn't configure that at all.

Does anyone have an idea what could be the problem ?

Did anyone have the problem before?

SFOS 20.0.0 GA-Build222

 



This thread was automatically locked due to age.