Central Source NAT and Destination NAT
What are the differences between central SNAT and DNAT and the policy based regular NAT that a lot of people use?
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!
Don't Forget To visit the YouTube Channel for the latest Fortinet Training Videos and Question / Answer sessions!
- FortinetGuru YouTube Channel
- FortiSwitch Training Videos
Cybersecurity Videos and Training Available Via: Office of The CISO Security Training Videos
Is there a way to do central snat and dnat in the same flow ?
When packet is received by Fortigate interface source and destination is as follows;
original IPs S:10.2.3.1 D:11.2.3.1
when packet leaves Fortigate, source and destination IP addresses for the same flow should be ;
translated IPs; S:12.2.3.1 D: 13.2.3.1
So, I understand Central SNAT and DNAT thankfully from times long past, but what I have trouble finding is decent information on how exactly policies should work under Central Snat. As an example, previously I targeted a VIP. I would assume, just from using other equipment, that I would just be changing the target of the policy to what was the local IP targeted by the VIP while the interfaces involved stay the same. Did you happen to do another video that addressed how that part works? Lastly, love the videos and the site. You’ve helped more than I can express here!