outbound NAT use ip pools seem not work

Forum|Forum|10 years ago
May 4, 2016
1 reply
11851 views

Inbound use VIP to do mapping is ok.

Outbound use IP Pools to set but failed.

Outbound ip is different with original ip.

Thanks.

Bunce

New Member

If associated with a VIP rule, I'm pretty sure it will use the VIP IP for outgoing as well.

hoiyi88Author

New Member

There have one server with 3 DMZ IPs .

3 DMZ IPs will use different port to do signal and media. It seems VIP IP rules outgoing IP is different with original IPs.

if one server with 1 DMZ ip with VIP mapping. the outgoing IP is same with original IP.

Bunce

New Member

If this traffic is for Video Conferencing are you sure the VC system is setup correctly? NAT raises a number of difficulties with H323 / SIP protocols etc, especially if teamed with Fortinet's Session helpers.

It's pretty much universally accepted to disable these helpers on Fortigate units as they always cause trouble - that would be my first recommendation and then report back with the latest results, ideally with a log capture:

http://socpuppet.blogspot.com.au/search?q=diag+debug+flow

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded