"Match" Rules Question for Traffic Shaping

  • I've made a ton of progress in trying to validate floating rules and getting my traffic sorted out in the proper queues. I can't seem to figure out how to get a private NAT match on a floating rule. I've tried having no interfaces selected, wan or lan checked and it never seems to match.

    I can see in the states as an example here is my state:

    I can see the originating IP in there in the ()s which is my NAT. I thought I'd be able to make a floating rule on the LAN to match the private IP of in that example, but it never matches.

    I can make a LAN "Pass" rule that puts that IP and sets the right queues outbound, which primarily fixes my upload question for those hosts, but I thought I'd be able to do it via a floating rule. I wasn't sure if I was missing something or not.

    I have packet logging on for the rules and can see my larger default rule match, but never the private NAT rule no matter what I try.

    Any thoughts or things to try would be appreciated.

