09-12-2022 06:07 AM - edited 09-12-2022 06:16 AM
Hello,
I am trying to understand why the nat from the DMZ zone doesn't work outside or inside.
DMZ Host 1 with private IP: 192.168.40.99 ----> I want to translate outside with IP: 192.0.2.50, I want to ssh from outside to DMZ H1.
Configured NAT from DMZ TO OUT see the photos.
I have configured ACP from out to DMZ allowing SSH traffic but doesn't work, any ideas why doesn't work?
Solved! Go to Solution.
09-12-2022 06:46 AM
@ipv6x use a Static Auto NAT rule (not manual), the source address would be host "dmz-real-h1" and the translated address is "IP_192.0.2.50".
09-12-2022 06:46 AM
@ipv6x use a Static Auto NAT rule (not manual), the source address would be host "dmz-real-h1" and the translated address is "IP_192.0.2.50".
09-12-2022 06:55 AM
@Rob Ingram i configured like this but nothing happened and I see on ACP hist the out-in-dmz gets hits but nothing passes why this?
09-12-2022 07:03 AM
I figured out @Rob Ingram i was missing the route from DMZ Host to FTD, after I configure the route now it worked.
Thank you,
Regards,
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: