TKWITS Community Legend ✭✭✭✭✭
Reactions
-
Re: VPN traffic via NAT rules from WAN -> My Firewall -> Second Firewall
I wouldn't NAT only the specified VPN traffic, NAT any traffic from the Palo to anything on the internet with their assigned public IP. Otherwise you'll end up missing something. Same on inbound. Sho… (View Post)1 -
Re: VPN traffic via NAT rules from WAN -> My Firewall -> Second Firewall
It's not likely the Palo is NATing outbound traffic to the 72.x.x.x address for two reasons: You didnt give them the 72.x.x.x address for their WAN interface; thats not how routing works. What IP did… (View Post)1 -
Re: VPN traffic via NAT rules from WAN -> My Firewall -> Second Firewall
Generally you want to see packets 'forwarded'. But I cannot tell from your description if the palo traffic is what is leaving. Post sanitized screenshots of the packet details from the packet monitor… (View Post)1 -
Re: VPN traffic via NAT rules from WAN -> My Firewall -> Second Firewall
To answer the questions: The Cloud Providers IP address object should be in the Zone in which it exists (i.e. it's on the Sonicwall's WAN). What you are essentially doing is a port forward, so you'll… (View Post)2 -
Re: noob Can't get simple port forward to work.
It seems you forgot the other half of the 'port-forward', a NAT policy. The below KB should help, you'll just need to use your own IPs, Ports, etc. rather than their examples. https://www.sonicwall.c… (View Post)1