SNAT support
I want to know how I can add SNAT rules using the omada controller, it does not seem to be possible
I want packets with source address
192.168.1.0/24 to leave with the address of one of the lan internal addresses however after scratching my head vigoursly I cannot find any way to add this simple rule..
Is it unsupported?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
The default on this router itself is that the data going out is SNAT and coming in is DNAT.
When data goes out, the gateway replaces the source IP address with the router's WAN IP address.
- Copy Link
- Report Inappropriate Content
@Virgo thanks i noticed that the wan ip is used. that is not what i need unfortunately.
I need packets from 192.168.1.1/32 snat to $LANFACINGIP
- Copy Link
- Report Inappropriate Content
@crrodriguez Is that possible? I am not an expert here so others may need to chime in but in my initial exploration it doesn't seem like any firewall/nat rules can be applied across internal network segments. It doesn't appear that there is any state tracking or firewall between LAN segments. You can apply stateless ACLs but those seem to be applied to the switch ports and not a firewall. The only place I have seen nat/firewall being applied is on WAN ports.
- Copy Link
- Report Inappropriate Content
@Alex789 my exploration reached the same conclusion, that everything is stateless. that is quite a bummer really.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 645
Replies: 4
Voters 0
No one has voted for it yet.