Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 3 subscribers
  • Views 62737 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to fix host to outgoing interface

MongkolPirarak

My software UTM 9 9.407-3, In my home I have 4 IP camera and 1 NVR. IP camera and NVR have DDNS of each. I have 2 internet line. How to fix all ip camera and NVR out to 1 internet line because more 1 internet line not support DDNS of ip camera and NVR.



This thread was automatically locked due to age.
Parents
  • 0

    Hi Mongkol,

    If the NVRs and cameras are configuring the DynamicDNS themselves and not the UTM then when you have two default gateway on the UTM, uplink balancing will be enabled and the UTM will push all connections out to the internet in a round robin format which will mess with DynamicDNS every time the connection is made on a different interface. In addition to what Sachin and BAlfson have said for incoming, for connections being made from your internal network to the internet which you want bound only to one IP the simplest way to do this is to create an SNAT under Network Protection > NAT > NAT tab with the following properties:

    • Source: Network Group of the devices you want to go out via one gateway
    • Services: Any
    • Destination: Internet IPV4 definition
    • Change Source Address to: Put Interface Address of desired gateway here
    • Don't change Service
    • Automatic Firewall rule to enabled

    What this will do is use the SNAT to force all traffic to bypass uplink balancing and go out with the source IP of the gateway interface you've chosen :)

    Hopefully this helps!

    Emile

Reply
  • 0

    Hi Mongkol,

    If the NVRs and cameras are configuring the DynamicDNS themselves and not the UTM then when you have two default gateway on the UTM, uplink balancing will be enabled and the UTM will push all connections out to the internet in a round robin format which will mess with DynamicDNS every time the connection is made on a different interface. In addition to what Sachin and BAlfson have said for incoming, for connections being made from your internal network to the internet which you want bound only to one IP the simplest way to do this is to create an SNAT under Network Protection > NAT > NAT tab with the following properties:

    • Source: Network Group of the devices you want to go out via one gateway
    • Services: Any
    • Destination: Internet IPV4 definition
    • Change Source Address to: Put Interface Address of desired gateway here
    • Don't change Service
    • Automatic Firewall rule to enabled

    What this will do is use the SNAT to force all traffic to bypass uplink balancing and go out with the source IP of the gateway interface you've chosen :)

    Hopefully this helps!

    Emile

Children
No Data
Unfiltered HTML