Hello, We have two questions:Is there a guide to make virtual IPs work
on SSL VPN interfaces?May hairpin NAT work using secondary IP
interfaces?We are trying to make hairpin NAT work on 3000F. Any help
will be much appreciated. We followed this KB on...
Thank you very much for giving us your time, @funkylicious; it's much
appreciated. Indeed, the interface is DATA, not DMZ. My bad. We disabled
NAT on policy 3, and it still doesn't match traffic. # get router info
routing-table details 10.120.0.123 R...
Hi again, @funkylicious; This follow from my previous response. We have
tried Point 1 to 4; and there is no hairpin NAT happening between SSLVPN
and DMZ. We have defined policy ID 3,# show firewall policy 3 config
firewall policy edit 3 set uuid c8bc...
Hi @funkylicious, Thanks for having answered, it's much appreciated.
From your answer I understood that you would:use `any` as extintf, so
the VIP may be used as dstaddr.assign one IP to the WAN, and use an IP
pool if SNAT is needed.define a policy f...
You are leaving our website
You are leaving our site and we cannot be held responsible for the content of external websites
