This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Hairpin routing NAT

I'm hairpin routeing off my Internal interface between 2 subnets and can ping but not RDP.  When I RDP from 10.10.39.138 t0 192.168.25.21 I only see return traffic in the logs.

13:51:45         Suspicious TCP state          TCP          192.168.25.21:51485→ 10.10.39.138:52438          [ACK RST]          len=40          ttl=127          tos=0x00          srcmac=00:03:47:71:5d:3d          dstmac=00:15:17:24:aa:30

Any suggestions?  Something with nat perhaps?

This thread was automatically locked due to age.

Parents

0 timdoty17545 over 10 years ago

I assume I need to create a NAT rule
Network Security -> NAT -> DNAT/SNAT
When I try to create a SNAT rule I get "You did not enter all required data, or one or more settings are syntactically invalid."

Name: Donegal Crossover
Group: >
Name: Donegal Crossover
Position: Bottom
Traffic Source: sn.donegal_10/8 ***10.0.0.0/8***
Traffic Service: Any
Traffic Destination: Internal (Network) ***192.168.25.0/24***
NAT mode: DNAT (Destination)SNAT (Source)Full NAT
Source:
Source Service:
Log initial packets:
Automatic packet filter rule:
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 timdoty17545 over 10 years ago

I assume I need to create a NAT rule
Network Security -> NAT -> DNAT/SNAT
When I try to create a SNAT rule I get "You did not enter all required data, or one or more settings are syntactically invalid."

Name: Donegal Crossover
Group: >
Name: Donegal Crossover
Position: Bottom
Traffic Source: sn.donegal_10/8 ***10.0.0.0/8***
Traffic Service: Any
Traffic Destination: Internal (Network) ***192.168.25.0/24***
NAT mode: DNAT (Destination)SNAT (Source)Full NAT
Source:
Source Service:
Log initial packets:
Automatic packet filter rule:
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data