NAT exemption

Forum|Forum|7 years ago
May 30, 2019
1 reply
4821 views

Hi,

I have a FG-60-E-BDL to be configured for one of my customers. I need to know whether i can exempt the LAN traffic from NAT based on the destination. Its a flat network with a single Vlan and the internet traffic should go through the firewall with NAT while the traffic towards their branches should be exempted from the NAT.

Toshi_Esumi

SuperUser

It's just about FW policies you have and need to add. Does the branch traffic come/go through the same interface the internet traffic comes/goes through? Then you need to separate branch traffic by source and/or destination addresses/subnets in a new policy without NAT since the interface is the same.

sw2090

SuperUser

additional: mind the order of your policies! FGT Policies are first come first serve!

So policies for the branches have to come first if they use the same source net and/or interface!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded