NAT with translation

willyro

Hi All,

i'm a new user of pfSense. I spent hours to understand how it works and finally decided to request some help on the forum :)

(pfSense is virtualised in my infrastructure and does not deal with DHCP)

I need to NAT addresses before requests go to a Cisco Meraki (to connect to customer network)
I succeeded in doing simple NAT with appropriate rule to have requests going on WAN port but i'm encountering difficulties with translation.

My users need to access addresses on 10.33.0.0/16 but i need to translate them before on pool 10.33.25.0/24
I have SYN_SENT:closed errors which would mean settings are be missing.

i can see the field for translation in my rule but i don't see what is missing ?

please find below a schema which would be easier to understand

thanks for your help

viragomann

@willyro said in NAT with translation:

My users need to access addresses on 10.33.0.0/16 but i need to translate them before on pool 10.33.25.0/24

Is this a typo? The graphic shows 10.35.25.0/16 for the tranlation.

Do you want to translate the users subnet 192.168.231.0/24 1:1 into the other subnet or into any IP out of the pool?

Do your users use pfSense as default gateway?

Is there route back pointing to 172.30.10.4 on the customer network for the subnet you want use for translation?

willyro

Hi,

it is a typo on the graphic, i need to translate users IP 192.168.231.0/24 into 10.33.25.0/24

on the global architecture, i use a different gateway to route users.

on the vlan created and used to connect pfSense WAN and Meraki, i was able to mention that i would use a different gateway in my interface i.e. Meraki (i use Unifi devices).

Is there route back pointing to 172.30.10.4 on the customer network for the subnet you want use for translation? not for the moment