Resolved: Old grumpy admin's fault. NAT Counter not working as expected

I have a NAT rule as shown below

The rule works as expected but the NAT counter is not working using this configuration. If I change the source to ANY or explicitly as my workstation's IP, everything works as expected.

 

Related to https://community.sophos.com/products/xg-firewall/sfos-eap/sfos-v18-early-access-program/f/feedback-and-issues/115813/port-renaming-not-implemented-system-wide/417298#417298 .

Whats the point of having zones and port names if the firewall /NAT rules consider port1 as physical port1 on the firewall and not LAN or LAN zone.

 

Regards

Bill

Parents
  • Source NAT is not your interface. 

    What do you want to archive with your rule? 

    #PortX is the Interface itself. 

    So basically why should the Interface itself generate traffic? 

    If you want to select traffic coming / going to, please use the Interface Matching criteria on the bottom of the Rule. 

    __________________________________________________________________________________________________________________

Reply
  • Source NAT is not your interface. 

    What do you want to archive with your rule? 

    #PortX is the Interface itself. 

    So basically why should the Interface itself generate traffic? 

    If you want to select traffic coming / going to, please use the Interface Matching criteria on the bottom of the Rule. 

    __________________________________________________________________________________________________________________

Children