Hi,
Any ideas on how to apply a Nat Souce based on the destination port, in version 7.0 with Central SNAT enabled?
In version 7.4.x, a new functionality was released so that in the Central SNAT policies you define the destination port using the CLI.
But in previous versions is there a similar way to do this?
It is required that the source IP be changed when the request is made to a specific destination port.
Example.
When I launch a request from the computer with the IP 192.168.1.10 to destination 10.10.10.5 and destination port 5302, the source ip change 172.16.1.10.
When the request is launched between the same source and destination but with a different port (5555), a nat source with 172.16.1.20 is applied.
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Seems that it's not possible.
This feature seems new on version 7.4
Another solution I can think of is NOT using Central SNAT.
You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.
Seems that it's not possible.
This feature seems new on version 7.4
Another solution I can think of is NOT using Central SNAT.
You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1702 | |
1092 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.