Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Bth
New Contributor

Fortinet Firewall Gateway Address

I have the Fortinet 60D firewall set up with NAT. My mail server, however, is seeing every user get reported as coming from the gateway IP address, instead of the IP address they are actually coming from.

 

Why? Is there some setting I might have wrong here? It seems the inbound IPs should be reported correctly.

 

Suggestions appreciated as this is causing serious issues with my mail server.

Brian

3 REPLIES 3
rwpatterson
Valued Contributor III

The policy that points the traffic inward to your email server should have NAT turned off.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
Bth

That worked for the inbound IPs, thanks.

 

Now I notice that the servers that have a local IP, and are sending mail to another server that has a local IP, are showing the gateway IP address reported in the logs.  I would think they would report their own local IP address, not the IP of the gateway.  Or they would report their public IP.  Having the gateway IP reported is problematic.  

 

Is there a similar tweak I can make for this?

 

Thanks, Brian

rwpatterson
Valued Contributor III

If you are accessing those other servers by public DNS name, then the traffic is exiting the FGT via the NAT policy and coming back in, hence the gateway address. The only way around it is to have your inside servers use a different DNS zone, pointing the public names to the private IP addresses.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
Top Kudoed Authors