Hello, I need help understanding how Fortigate handles two very similar
policies.I've got three vlans with corresponding subinterfaces:
10.20.0.0/16 (project 1), 10.30.0.0/16 (project 2) and 10.40.0.0/16
(project 3).I've got a VIP mapping 192.168.1.1...
This was an interesting hint though! I added NAT to the rule, just to
see what happens, and interestingly enough, it changed the source ip to
the public ip mapping into the VIP, so in my example 192.168.1.1.So with
NAT it's not using the vlan gateway...
I've just had a look. No, there's no NAT in the rules themselves that
point to the VIP. There is however a general SNAT rule for all three
VLANs when the packets go out into the internet. But that shouldn't
matter because the destination interface is...
