4. Custom nat from lan

Custom nat from lan

  • A

    i am trying to add a rule to interfaces.inc as the gui does not support it.
    where ever i add it it seems to strip out all my outbound nats

    can someone offer a solution of how or where i can put this.

    my ruleset is

    anchor "smtpredirection"
    table <smtpredirection>{  192.168.50.0/24 }
    rdr on {$lanif} proto tcp from <smtpredirection>to any port 25 -> 10.250.3.36
    nat on {$lanif} proto tcp from <smtpredirection>to any port 25 -> {$lanif}

    my syntax was

    /* anchor the outbound nat rules */
    $natrules = "# outbound email rules for spam trap\n";
    $natrules .= "table <smtpredirection>{  192.168.50.0/24 }\n";
    $natrules .= "rdr on {$lanif} proto tcp from <smtpredirection>to any port 25 -> 10.250.3.36\n";
    $natrules .= "nat on {$lanif} proto tcp from <smtpredirection>to any port 25 -> {$lanif}\n";</smtpredirection></smtpredirection></smtpredirection></smtpredirection></smtpredirection></smtpredirection>

    0
  • H

    You can setup these kind of portforwards from the gui. Set it up as portforward on interface LAN with "external adress" any.

    0
  • S

    The portforward option is in  Firewall: NAT: Port Forward

    0
  • A

    but what i want to do is this

    < 192.168.50.1/32 192.168.50.2/32 192.168.50.128/25 >

    and the rest of the clients dont get natted by the smtp rule

    0
  • H

    That is sourcebased natting which is not supported atm.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy