Nik
Jun 29, 2009Cirrus
forwarding/nat/snat help
hi, i've been scouring the documentation and forums but have had no success solving my problem. basically the issue is that we have an application that is very picky about incoming packets as a denial of service prevention precaution. as far as i can see if the packet is changed/translated/etc at all it will be rejected.
i can set this up with a one-to-one nat on our checkpoint firewall and it works wonderfully, however when i create a nat pool on our f5 (yes the node's default gateway is the f5) it rejects the traffic. i know it's the application because i can setup a plain vanilla vlan for forwarding ms remote desktop and it functions fine.
so far i've tried a single nat (everything else but this app works), all types of snats, and tinkered with ip forwarding a bit, which i had no luck with.
any help you guys could offer would be greatly appreciated. thanks!