On 8/26/05, Tim Roberts <[EMAIL PROTECTED]> wrote: > ok I read it wrong - very sorry - panic :) It says I cannot enter the > advanced outbound NAT rule becuase of an overlap with the 1:1 nat we have > for these clients. I just assumed it was becuase of the overlap in the > outbound stuff. We have a 1:1 entry for each customer that has a static ip > and just verfied that all customers a.) are flowing out of the firewall and > b.) are showing up on the outside world as their correct static ip. Its the > fact that the firewall is dropping any and all requests to these static IP's > from the outside even though we have rules under wan2 permitting all > source/port/dest/etc.. for each 1:1.
Once you enter a 1:1 nat rule, it automatically maps the internal ip to the external so there is no reason for a advanced outbound nat rule. After you create the 1:1 rule you need to allow traffic flowing from the WAN port to the internal ip destination port. Have you done this? Can you give some example firewall rules from the summary screen (the screen that you can add and delete firewall rules from). Scott
