Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Outbound Manual NAT not applying

    NAT
    4
    10
    1043
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      scotttiamit last edited by

      Hi guys, I have had some Outbound NAT rules setup and working for a while now. I have just added an additional rule so that all outbound traffic from a specific Network 192.168.15.0/24 uses a specific IP Address of 101.98.12.100. This is a subnet I want to use for all WIFI and BYOD access so it shows as coming from a different IP mas our main corporate traffic.

      The 2 rules to apply the same sort of thing for our mail server 101.98.12.97 is working fine. All other web traffic shows as from 101.98.12.98 which is th ebottom rules you can see in the screenshot below.

      Any ideas why this new rule for 101.98.12.100 is not working?

      The addresses are set as VIPs:

      Also the NIC is set to be 192.168.15.5/24.

      Thanks for your help!

      1 Reply Last reply Reply Quote 0
      • C
        cmb last edited by

        It's on the wrong interface. Egress interface, which looks like it should be WAN.

        1 Reply Last reply Reply Quote 0
        • S
          scotttiamit last edited by

          Good spot, thanks I totally missed that. I fixed it but it doesn't seem to of changed anything. Traffic from my mobile which is on WIFI using the IP 192.168.15.105 should be showing a WAN IP of 101.98.12.100 but it is still showing 101.98.12.98 so it is getting to the last outbouund NAT rule. Any other ideas?

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned last edited by

            Did you reboot after changing this?

            1 Reply Last reply Reply Quote 0
            • S
              scotttiamit last edited by

              haha IT 101. Yes I did. Still no change.

              1 Reply Last reply Reply Quote 0
              • S
                scotttiamit last edited by

                Anyone else got any ideas? Cheers.

                1 Reply Last reply Reply Quote 0
                • Derelict
                  Derelict LAYER 8 Netgate last edited by

                  Post the same screenshots again.

                  1 Reply Last reply Reply Quote 0
                  • S
                    scotttiamit last edited by

                    Sure here you go:


                    And here is the ip address my mobile is using when on the BYOD network, still 101.98.12.98:

                    1 Reply Last reply Reply Quote 0
                    • Derelict
                      Derelict LAYER 8 Netgate last edited by

                      It's still on the wrong interface, Holmes.  OUTBOUND NAT goes on the OUTBOUND interface.  Change that BYOD to WAN.

                      Change the VIP too.  It should also be on WAN.

                      1 Reply Last reply Reply Quote 0
                      • S
                        scotttiamit last edited by

                        Ahhh! Right, thanks mate that fixed it. I appreciate the help.

                        Awesome!

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post

                        Products

                        • Platform Overview
                        • TNSR
                        • pfSense Plus
                        • Appliances

                        Services

                        • Training
                        • Professional Services

                        Support

                        • Subscription Plans
                        • Contact Support
                        • Product Lifecycle
                        • Documentation

                        News

                        • Media Coverage
                        • Press
                        • Events

                        Resources

                        • Blog
                        • FAQ
                        • Find a Partner
                        • Resource Library
                        • Security Information

                        Company

                        • About Us
                        • Careers
                        • Partners
                        • Contact Us
                        • Legal
                        Our Mission

                        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                        Subscribe to our Newsletter

                        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                        © 2021 Rubicon Communications, LLC | Privacy Policy