Can anyone give some pointers on this, please.
Hardware is 1009-8G-1S-1S+ with ROS 6.30.4.
It is just doing a simple NAT from a public IP address (/30) on the SFP port to an office of PCs. Standard config with DHCP server, firewall srcnat masquerade rule, etc.
They have an FTP server on the LAN side with has port 21 forwarded to it via a dst-nat rule.
The client reports that the FTP server sees all WAN traffic as originating from the router's LAN IP eg 192.168.88.1 instead of a.b.c.d public IP. He needs it to report the WAN IP as he has access lists, traffic policies per IP, etc.
Is there some trick, or something I have missed, that stops the WAN address being rewritten to 192.168.88.1 during a port forward?