Hi guys,
Ok, this configuration was in our ASG320 before my join at the company where I work for. It is a full nat configuration to access our webserver from the public network....something like this:
1. FULL NAT (comment 1)
Traffic Selector: ANY - http - external (wan) IP (A.A.A.A)
Source translation: external (wan) IP (A.A.A.A)
Destination translation: web server (B.B.B.B)
Automatic firewall rule: disabled
Initial packets logged: enabled
2. FULL NAT (comment 2)
Traffic selector: ANY - service x - external (wan ) IP (A.A.A.A)
Source translation: external (wan) IP (A.A.A.A) - service x
Destination translation:web server (B.B.B.B) - service x
Automatic firewall rule: disabled
Initial packets logged: enabled
I need to log IPs from inbound traffic, this is something that I configured on the server, but it keeps logs from IP A.A.A.A which is the source IP used for the full nat.
I think a DNAT configuration would help me, but I don´t know if full nat is required for web server NAT configurations.
Thanks....
Ok, this configuration was in our ASG320 before my join at the company where I work for. It is a full nat configuration to access our webserver from the public network....something like this:
1. FULL NAT (comment 1)
Traffic Selector: ANY - http - external (wan) IP (A.A.A.A)
Source translation: external (wan) IP (A.A.A.A)
Destination translation: web server (B.B.B.B)
Automatic firewall rule: disabled
Initial packets logged: enabled
2. FULL NAT (comment 2)
Traffic selector: ANY - service x - external (wan ) IP (A.A.A.A)
Source translation: external (wan) IP (A.A.A.A) - service x
Destination translation:web server (B.B.B.B) - service x
Automatic firewall rule: disabled
Initial packets logged: enabled
I need to log IPs from inbound traffic, this is something that I configured on the server, but it keeps logs from IP A.A.A.A which is the source IP used for the full nat.
I think a DNAT configuration would help me, but I don´t know if full nat is required for web server NAT configurations.
Thanks....