Source Nat with destination port

Mikerdz09 · ‎11-13-2023

Hi,

Any ideas on how to apply a Nat Souce based on the destination port, in version 7.0 with Central SNAT enabled?
In version 7.4.x, a new functionality was released so that in the Central SNAT policies you define the destination port using the CLI.
But in previous versions is there a similar way to do this?

It is required that the source IP be changed when the request is made to a specific destination port.

Example.
When I launch a request from the computer with the IP 192.168.1.10 to destination 10.10.10.5 and destination port 5302, the source ip change 172.16.1.10.
When the request is launched between the same source and destination but with a different port (5555), a nat source with 172.16.1.20 is applied.

darisandy · ‎11-13-2023

Seems that it's not possible.

This feature seems new on version 7.4

Another solution I can think of is NOT using Central SNAT.

You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.

View solution in original post

darisandy · ‎11-13-2023

Seems that it's not possible.

This feature seems new on version 7.4

Another solution I can think of is NOT using Central SNAT.

You create different firewall policy, with different SERVICE (based on destination port), then assign the appropriate IP Pool.