Why is the WAN source IP not showing on internal servers of a NAT rule?
Options
Zyxel_Emily
Posts: 1,491 
Zyxel Employee
Zyxel Employee
in Networking
Question:
A customer using NAT rules observed that incoming traffic to their internal servers doesn't display the original WAN client source IPs. Instead, it shows the local interface private IPs.
Answer:
It may be affected by a policy route rule. This rule was set as 'incoming any, source any, destination any,' which led to the NAT traffic not functioning as expected. After disabling the problematic policy route rule, the correct external IPs appeared in the packet trace.
Tagged:
0
Categories
- All Categories
- 442 Beta Program
- 3K Nebula
- 229 Nebula Ideas
- 130 Nebula Status and Incidents
- 6.6K Security
- 662 USG FLEX H Series
- 359 Security Ideas
- 1.8K Switch
- 86 Switch Ideas
- 1.4K Wireless
- 56 Wireless Ideas
- 7.1K Consumer Product
- 305 Service & License
- 497 News and Release
- 95 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 5K FAQ
- 34 Documents
- 89 About Community
- 110 Security Highlight