Hello,
We have an internal network on private addresses 192.168.0.x which we are NAT’ing to the outside world. We would like all undefined traffic to NAT out one IP address, but would also like to force specific private IP addresses to NAT out a different IP.
In version 2.8 we used to do this as follows :
ip firewall src-nat add src-address=192.168.0.1/32 action=nat to-src-address=123.123.123.1 to-src-port=0 disabled=no
However in version 2.9 it will not allow me to specify a dst-nat action on a src-nat rule. The error message I receive is “Couldn’t add New NAT RUle - srcnat chain can not contain redirect/dnat actions (6)”