Security Gateway Manual Netgate-8300
2.7.5 Outbound NAT
For clients on this interface to reach the Internet from private addresses, the firewall must apply Outbound NAT for the
new subnet.
• Navigate to Firewall > NAT, Outbound tab
• Check the current outbound NAT mode and follow the section below which matches the mode.
Automatic or Hybrid Outbound NAT
If the mode is set to Automatic or Hybrid, then this likely does not need further configuration.
Ensure the new LAN subnet is listed as a Source in the Automatic Rules at the bottom of the page. If so, skip ahead
to the next section to configure Firewall Rules.
Manual Outbound NAT
If the mode is set to Manual, create a new rule or set of rules to cover the new subnet.
• Click to add a new rule at the top of the list
• Configure the rule as follows:
Interface
Choose the WAN interface. If there is more than one WAN interface, add separate rules for each
WAN interface.
Address Family
IPv4
Protocol
Any
Source
Either choose OPTx Subnets, which will automatically reference the new interface, or choose
Network or Alias and manually fill in the new subnet, e.g. 192.168.2.0/24.
Destination
Any
Translation Address
WAN Address (or the customized name matching the WAN/egress interface)
Description
Text describing the rule, e.g. Guest LAN outbound on WAN
• Click Save
• Click Apply Changes
Alternately, clone existing NAT rules and adjust as needed to match the new LAN.
© Copyright 2024 Rubicon Communications LLC 66
To Next Page
Loading...
