Internal client is expecting FTP traffic to come back with source 1.2.3.4 and discards response from 10.0.0.1.FTP server sends response back directly to 10.0.0.100 with source address 10.0.0.1 and never goes back out the firewall since it sees the local source address.Firewall has a rule that sends port 21 traffic to 10.0.0.1 and sends the traffic to 10.0.0.1 sending it with a true source address of the client IP (10.0.0.100).Internal client sends traffic to default gateway/firewall.The traffic flow for your current setup would basically goes as follows (using example IP's): What you are trying to do generally won't work without reconfiguration on the firewall/NAT device.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |