This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ping from Inside, but not from Inside - NAT

I was created a Dnat rule it is working from outside (WAN), but it is not working from the inside (LAN)



This thread was automatically locked due to age.
Parents
  • Hello Nagaraju and welcome to the UTM Community!

    This kind of networking problem can be addressed with split DNS, but it's also possible to do it with NAT rules.

    Instead of just one DNAT using "Any" in 'For traffic from:', you need two rules like the following, in order:

    1. DNAT : Internet IPv4 -> {Any, Ping} -> External (Address) : to {internal device}
    2. Full NAT : Any -> {Any, Ping} -> External (Address) : from Internal (Address) to {internal device}

    Note that NAT rules are in an ordered list, so traffic that qualifies for rule 1 will not be considered for any further rules.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Hello Nagaraju and welcome to the UTM Community!

    This kind of networking problem can be addressed with split DNS, but it's also possible to do it with NAT rules.

    Instead of just one DNAT using "Any" in 'For traffic from:', you need two rules like the following, in order:

    1. DNAT : Internet IPv4 -> {Any, Ping} -> External (Address) : to {internal device}
    2. Full NAT : Any -> {Any, Ping} -> External (Address) : from Internal (Address) to {internal device}

    Note that NAT rules are in an ordered list, so traffic that qualifies for rule 1 will not be considered for any further rules.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data