This is probably super basic, I went through the documentation, I spent hours on this and I simply dont get it.
I have two IPsec tunnels, one is coming from AWS to my firewall, and the second one is from my firewall to the customer.
I need to deliver the traffic from AWS to the customer -> AWS is sending the traffic to the customer IP.
I want to NAT the source IP address from AWS.
So I added NAT rules:
add chain=srcnat src-address=10.93.0.0/16 dst-address= 10.15.1.1 action=src-nat to-address=10.2.200.9
the traffic does not fall in this rule, because it does not come from the inside I guess. So I try to add before that one:
add chain=dstnat src-address=10.93.0.0/16 dst-address= 10.15.1.1 action=accept
the traffic does fall in that rule, but once accepted that is. It does not go to my srcnat. .
I tried to passthrough, or jump to, I also did dsnat translation to the same destination IP, I really dont know how to configure this.
What am I missing?
Thank you very much.