Hello,
I don't understand when to set or unset the NAT button.
I have two servers on my LAN that are reachable on the same WAN with port mapping from WAN adress IP: port_to_translate to LAN IP: port_translated.
On the first server I have a SSH server without the NAT button set on the Policy and it works.
I can access the server from WAN.
On the second server I have a web server ( node.js) but I have to have the NAT switch set on.
If the switch is off , I can't access the server web.
In which case in port translate I need to turn the switch on or off in the policy?
Thank you.
Félix 34
Solved! Go to Solution.
That means the second server's default route is not coming through the FGT's interface. VIP=DNAT. So regularly don't need NAT(SNAT) enabled, which by default SNATs the source IP to the interface IP, as long as the returning packets from the destination come back to the same interface at the FGT.
That means the second server's default route is not coming through the FGT's interface. VIP=DNAT. So regularly don't need NAT(SNAT) enabled, which by default SNATs the source IP to the interface IP, as long as the returning packets from the destination come back to the same interface at the FGT.
Thanks Toshi.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.