Outbound NAT problem in multiwan scenario

[mathewst]

Hello,

We have WAN, LAN and multiple virtual addreses from same network segment as WAN and its gateway is in.
Everything but outbound nat works correctly so far.

Automatic rule, neither manual nor hybrid is able to produce good routing for us.
Sometimes it works but then it stops.
Symptoms:
1.) we aint able to reach f.ex. port 25 within WAN network. (same segment but ip not routed by opnsense). Strange though is port 443 and 80 is working as intended. So you cant send mail but you are able to load webmail from client machine in LAN.
2.) we can solve nat routing by turning on settings Reflection for port forwards and  Automatic outbound NAT for Reflection.

Question:
I dont know to me it seems its either bug in opnsense or some ARP cache at provider cisco. Out of my hands, but could be something small and stupid. Any ideas?

[mathewst]

some pics to illustrate

[mathewst]

some more pics

[mathewst]

some more pics

[mathewst]

We have managed to get workaround for all problems so mail server wasnt routed properly obviously and was outside routers routable domain under 177 gateway (screenshots).
We moved it under virtual ip of router with full port forwarding (we tried 1:1 binat unsucessfull, but thats probalby not for this use but rather for relaying whole network segment).
Mail server under router virtual ip port forwarding and "Reflection for port forwards" + "Automatic outbound NAT for Reflection" works as workaround.

Would be nice to understand why it was not working in the first place. At least it was working sometime as I was clicking through outbound NAT but, made no sense.
Record what is currently inside outbound NAT works as intended, it represents one LAN address to be recognizable as public virtual ip.