int-ext-int nat issue

Forum|Forum|8 years ago
October 24, 2017
0 replies
1757 views

hello, i need to track the ip of local pc when accessing local destined vip via external ip (called hairpin if i’m correct), but instead i’m getting the local interface ip of the fgt unit.

according to http://kb.fortinet.com/kb....do?externalID=FD33976 , it mentions this behavior; “Note : for this traffic (port3 to port3), even though NAT is not enabled on the policy, the source IP address gets translated with the Fortigate internal IP address.”

Q1) why is the device nat’ing the source ip ? Q2) is there a way to fix this ?

thank you.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded