Hi gurus and enthusiasts,
Longtime lurker, first time poster. I believe I've availed myself to the forums and guides before I hit a wall and decided to post for help, but if I've missed something obvious, I would greatly appreciate being pointed to the proper kb doc or community post. I've used the EdgeMAX - NAT Hairpin post as my core reference and everything I've done related to Service > NAT is from there.
My basic setup:
- eth0 - WAN - T1 w/ Static IP. Represented in my config as 99.99.99.98 (not the real IP)
- eth7 - WAN - DSL w/ DHCP from modem.
- eth1 - Primary LAN
I'm routing outbound email traffic through eth0 (SMTP, POP3, IMAP4) with everything else through eth7. This works fine.
I have a NAT rule (1) successfully routing TCP 443 traffic from the WAN static IP to a server w/ static IP on primary LAN (10.7.10.230). This works fine from outside the network.
I seem to be stuck on the NAT hairpin and am unable to successfully route from computers on the LAN to the internal server via the WAN static IP. I have limited experience on the networking side of things and so I've tried (unsuccessfully) a number of variants with my NAT loopback rule, which I've excerpted below. I'm not certain that this is the issue since I'm seeing a flat zero count in the NAT screen in the GUI.
rule 5002 {
description "MASQ for ETH1 Loopback"
destination {
address 10.7.10.0/24
port 443
}
log disable
outbound-interface eth1
protocol tcp
source {
address 10.7.10.0/24
port 443
}
type masquerade
}
I've attached a dump of my config to this post. Any suggested readings, changes, improvements, or learning opportunities are greatly appreciated.
Thank you for your time.