Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Mikerdz09
New Contributor

Source Nat with destination port

Hi,

Any ideas on how to apply a Nat Souce based on the destination port, in version 7.0 with Central SNAT enabled?
In version 7.4.x, a new functionality was released so that in the Central SNAT policies you define the destination port using the CLI.
But in previous versions is there a similar way to do this?

It is required that the source IP be changed when the request is made to a specific destination port.

Example.
When I launch a request from the computer with the IP 192.168.1.10 to destination 10.10.10.5 and destination port 5302, the source ip change 172.16.1.10.
When the request is launched between the same source and destination but with a different port (5555), a nat source with 172.16.1.20 is applied.

NAT.png

1 Solution
darisandy
Staff
Staff

Seems that it's not possible.

This feature seems new on version 7.4

 

Another solution I can think of is NOT using Central SNAT.

You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.

View solution in original post

1 REPLY 1
darisandy
Staff
Staff

Seems that it's not possible.

This feature seems new on version 7.4

 

Another solution I can think of is NOT using Central SNAT.

You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.

Top Kudoed Authors