Thread Info
  • Locked Locked
  • Replies 2 replies
  • Subscribers 5 subscribers
  • Views 706 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNAT not working with http or https traffic

Sophos User4083

I have firewall rule that allows icmp, http and https traffic  to destination that is not behind wan link. It is routed through vlan interface.

I need to nat traffic in firewall ip address that is configured to this vlan interface.

When i run icmp traffic through this interface tcpdump shows that traffic is nated correctly.

http and https traffic is however not nated. Is there a bug?



This thread was automatically locked due to age.
Parents
  • FormerMember
    FormerMember

    Hi

    Thank you for reaching out to Sophos Community.

    If Web Protection is enabled on UTM for local network/specific subnet, then HTTP and HTTPS traffic will pass from Web protection with higher precedence.

    Refer to the article below to route web protection traffic from a specific WAN/alias interface.

    support.sophos.com/.../KB-000036802

    You'll also get 'Optional: Interface for outgoing traffic' option in Web Filter Profiles.

    Note: Failover for web traffic would not be possible after applying 'Optional: Interface for outgoing traffic'.

Reply
  • FormerMember
    FormerMember

    Hi

    Thank you for reaching out to Sophos Community.

    If Web Protection is enabled on UTM for local network/specific subnet, then HTTP and HTTPS traffic will pass from Web protection with higher precedence.

    Refer to the article below to route web protection traffic from a specific WAN/alias interface.

    support.sophos.com/.../KB-000036802

    You'll also get 'Optional: Interface for outgoing traffic' option in Web Filter Profiles.

    Note: Failover for web traffic would not be possible after applying 'Optional: Interface for outgoing traffic'.

Children
No Data
Unfiltered HTML