Thread Info
  • Locked Locked
  • Replies 2 replies
  • Subscribers 5 subscribers
  • Views 696 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNAT not working with http or https traffic

Sophos User4083

I have firewall rule that allows icmp, http and https traffic  to destination that is not behind wan link. It is routed through vlan interface.

I need to nat traffic in firewall ip address that is configured to this vlan interface.

When i run icmp traffic through this interface tcpdump shows that traffic is nated correctly.

http and https traffic is however not nated. Is there a bug?



This thread was automatically locked due to age.
  • FormerMember
    FormerMember

    Hi

    Thank you for reaching out to Sophos Community.

    If Web Protection is enabled on UTM for local network/specific subnet, then HTTP and HTTPS traffic will pass from Web protection with higher precedence.

    Refer to the article below to route web protection traffic from a specific WAN/alias interface.

    support.sophos.com/.../KB-000036802

    You'll also get 'Optional: Interface for outgoing traffic' option in Web Filter Profiles.

    Note: Failover for web traffic would not be possible after applying 'Optional: Interface for outgoing traffic'.

  • Hei and welcome to the UTM Community!

    How is the traffic routed through the other interface?  Is Web Filtering in Standard or Transparent mode?  Also, please show a picture of the Edit of your firewall rule and one of the Edit of the SNAT.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML