FAQ-When a User and a Server Are on the Same Intranet in the Same Security Zone, How Can I Configure a NGFW to Properly Forward Intranet User Packets Destined for the Public IP Address of the Intranet Server

Publication Date:  2015-07-01 Views:  179 Downloads:  0
Issue Description
When a User and a Server Are on the Same Intranet in the Same Security Zone, How Can I Configure a NGFW to Properly Forward Intranet User Packets Destined for the Public IP Address of the Intranet Server?
Solution
Perform the following operations on the NGFW:
  •  Configure a source NAT policy, in which the source and destination security zones are the same as those of the intranet user and server. The source NAT policy translates the source IP address of the intranet user into the public IP address of the intranet server.
  •  Configure a static mapping policy to translate the public address into the private address of the intranet server. The packets sent by the user to the server carry the server's public address as the destination address.

END