Wan with Public IP in transport network

Good Morning,
I find myself in a particular situation.
I need to connect a firewall in a network where I am given a public IP in a LAN.
Perhaps easier to understand could be the attachment.

I managed to mask MY LAN1 network to use the public IP address (in routing -> add -> From Lan1, Source Sub_Lan1 | NEXT-HOP Interface Wan1
however, the traffic coming from the firewall (ZyWALL) itself is not masked correctly and does not come out with the correct public IP. How can I get the traffic out of the ZYWALL Firewall as well?

Thanks for the support

All Replies

  • Zyxel_JeffZyxel_Jeff Zyxel Offical Agent Posts: 130  mod

    Hi @Alex_91

    In your scenario, if you would like to do SNAT you can enable it on your Policy Route.

    STEP1. Add an IP address object for public IP.



    STEP2.Enable SNAT on your Policy Route.


  • Hi Jeff,
    thank you for the help.

    I have already created this rule, as regards the traffic coming from LAN1 everything works correctly.

    The system engineer, however, tells me that the traffic coming from the firewall (I imagine to send notifications for SecureReport, to perform updates, ...) are not forwarded correctly. ( Only traffic from the firewall, and in Policy Route this option from ZyWALL to SNAT is disabled ).

  • dpiprodpipro Member Posts: 32  Freshman Member
    Hi @Alex_91

    you can do it by SSH 


  • It seems the rule is present with that command.

    Thank you so much!!

Sign In to comment.