Hot!NAT Src Dest Same Subnet

Author
Post
Essentials Only Full Version
ephemeric
New Member
  • Total Posts : 8
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/09/05 06:26:29
  • Status: offline
2019/01/30 09:02:51 (permalink)
0

NAT Src Dest Same Subnet

Hi,
 
I have the following:
172.20.15.160 -> 192.168.10.29:9997 TCP via FortiGate GW 172.20.15.1.
GW has a static route to 192.168.10.0/24 via 172.20.15.150.
OpenVPN AS on 172.20.15.150 will only allow from 172.20.15.1 to 192.168.10.0/24.
 
Is it possible to do NAT on the FG so that the above will work? So 172.20.15.160 -> 192.168.10.29 wil be NATted to 172.20.15.1.
Even if I enable NAT in the policy it still remains as source 172.20.15.160.
 
Am I doing something stupid?
 
FortiOS 5.6.6 on a FortiGate 101E.
 
Thank you.
 
 
 
 
post edited by ephemeric - 2019/02/08 03:26:06

Attachment(s)

snat.txt (0.59 KB) - downloaded 48 times
#1
Policy

2 Replies Related Threads
    lobstercreed
    Gold Member
    • Total Posts : 131
    • Scores: 21
    • Reward points: 0
    • Joined: 2018/11/28 14:57:58
    • Location: Sedalia, MO
    • Status: offline
    Re: NAT Src Dest Same Subnet 2019/01/30 11:27:04 (permalink)
    0
    Can you draw me a picture?  I'm not grasping this...especially where 172.20.15.150 comes into play.  If you could draw a picture of the various interfaces on whichever boxes and their addressing I will try to help.
    #2
    ephemeric
    New Member
    • Total Posts : 8
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/09/05 06:26:29
    • Status: offline
    Re: NAT Src Dest Same Subnet 2019/02/08 03:26:51 (permalink)
    0
    Please see uploaded ASCII diagram.
    #3
    Jump to:
    © 2019 APG vNext Commercial Version 5.5