Created on 04-18-2022 07:46 AM Edited on 01-30-2024 02:28 AM By Jean-Philippe_P
Description | This article demonstrates how a VIP's external IP address can be used to perform Source NAT (SNAT) when Central-NAT is enabled. The use of Virtual IP addresses is usually done to map external (public) to internal (private) IP addresses for Destination NAT (DNAT). |
Scope | FortiGate. |
Solution |
Topology: HOST <----->(LAN) FortiGate(WAN)< –----> Internet.
SNAT with VIP and Central-NAT enabled:
config system settings
Technical Note: How to resolve SNAT issue with multiple VIP mapped to the same internal IPTechnical Tip: Using VIP range for SNAT and static 1-to-1 mapping from internal to external IP addre... Troubleshooting Tip: SNAT in a Policy with VIP |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.