I'm trying to test port forwarding and NAT from the WAN interface to a machine on the LAN on an almost-stock 750GL (only other thing I set up is some port forwarding and some alterations to the IP pools). What I am finding however is that whenever I try to hit the WAN IP (XXX.YYY.ZZZ.XYZ) from behind the router (i.e. a 192.168.88.x address) nothing appears to happen. Today I happened by chance to attempt to forward port 443, and discovered that I'm getting the WebFig page - apparently all requests for the WAN interface get sent to the LAN interface instead.
Alas, my Google-fu is weak on this end as many of the keywords I'm using to describe the issue (WAN, LAN, nat, etc) tend to rank higher for more general-type questions. Now I could spend a few hours mucking around with the firewall and NAT settings, but I'm sure someone else would have come upon the same issue.
Below is my NAT table. I'm guessing that I either need to change the masquerade rule or add some other one translation. I'm also sure that once the answer is known it will seem really obvious, but I'm out of coffee and my brain refuses to help me out here.
Code: Select all
0 ;;; default configuration
chain=srcnat action=masquerade out-interface=ether1-gateway
1 X chain=dstnat action=dst-nat to-addresses=192.168.88.120 to-ports=443 protocol=tcp dst-address=XXX.YYY.ZZZ.XYZ dst-port=443