SNAT problem in Firmware 9.707.

Hi,

Someone have problems with SNAT? SNAT ( Hide NAT ) from LAN to Internet.

After PPP interface is reconnected and received new / different IPv4 address, the UTMv9 is still using the old IPv4 address for old sessions ( verification using tcpdump ).

Sometimes it resolves by it self ... and sometimes after restart ...

It's sporadic and I was unable to understand why it's happening.

When there is a problem, new sessions are working and SNAT is using new IPv4.

In version 9.705-3 and before worked flawlessly with the same configuration.

Is there a way to clear NAT cache?

* Unable to open a case. I'm using free UTMv9 for personal testing purposes as VM ( although license specifies that I should be able to open a case ... but it seems that this option lost in Sophos on the way ... ).  

Thank You.



Adding explanation.
[edited by: Alexey Haritonov at 2:09 PM (GMT -7) on 23 Oct 2021]
Parents Reply Children
  • Yep ... ppp0 interface should use new ISP IPv4 ... but it using old IPv4 ... or ... in rear occasions doesn't use SNAT and traffic goes out with private IP address.

    See tcpdump:

    ICMP to 8.8.8.8 is using "old" IPv4 83.130.88.100 ... obviously has no ICMP Replies.

    Using new IPv4 83.130.91.88, is working and there are ICMP replies ( UTM changed it by itself ... no intervention from my part ).

    At the same time ppp0 interface and object "ISP Partner Fiber (Address) display correct IPv4 address: 83.130.91.88.

    So ... it's definitely a BUG.