Bi-Directional NAT

Question

We are trying to do a NAT for a email server. THe network is configure as follows:    1. Internal = 192.168.3.0/24  2. WAN1 = 201.225.178.208/28  3. DMZ = 192.168.2.0/24    Our web/mail server is connected to the internal for POP3 service to all internal clients. It is also connected to the DMZ for hosting webpages and SMTP service to send emails to internet.    There is one policy to allow traffic to go out from the internal and the DMZ using the WAN1 interface. There is also one policy to create a one to one NAT from 201.225.178.213/28 (web/mail server public ip) to 192.168.2.2 (Web/mail server private IP). The problem is that the NAT is only one way, when the email server tries to send emails and connected to the internet, it will not be able to reach the gateway.    There is even a policy for allowing DMZ clients to go out via WAN1, eg. web/mail server (but in this case it will go out using the default gateway, not the VIP assign to it right?)    What should we do?    Thanks

Anonymous_User · Answer

Hi,    Could you explain more of your network plan?  Where are web server and mail server; internal or DMZ?    If it' s DMZ try a ping from your server to the GW. You have to set up VIP for your web server an mail server.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded