Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Transparent Natting from OPNsense to Fortigate
« previous
next »
Print
Pages: [
1
]
Author
Topic: Transparent Natting from OPNsense to Fortigate (Read 137 times)
cdsane
Newbie
Posts: 27
Karma: 1
Transparent Natting from OPNsense to Fortigate
«
on:
October 16, 2024, 07:59:58 pm »
Hello I need help with regards to making my IPs transparent through OPNsense to FortiGate
Use Case
So I have two firewalls on my network OPNsense as the (user firewall) and Fortigate as the (internet edge firewall). Currently with this setup when clients connect from the user firewall and push traffic to the internet through the fortigate the fortiview only sees the WAN IP of the OPNsense and not the client IP connected from the LAN side of the OPNsense.What we want to achieve is that we make the OPNsense side transparent so that when a client connected from lan pushes traffic from the LAN opnsense through to the fortigate to reach the internet we can inspect the traffic from the forti viewer and see the IP of the client and not the WAN IP of the OPNsense.
Thanks.
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: Transparent Natting from OPNsense to Fortigate
«
Reply #1 on:
October 16, 2024, 08:13:26 pm »
Simply disable outbound NAT in OPNsense (Firewall: NAT: Outbound).
On the Fortigate, you will have to create static routes (and possibly NAT rules) for the OPNsense LAN subnets.
Cheers
Maurice
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
cdsane
Newbie
Posts: 27
Karma: 1
Re: Transparent Natting from OPNsense to Fortigate
«
Reply #2 on:
October 17, 2024, 01:00:47 pm »
This worked
Thank you very much
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Transparent Natting from OPNsense to Fortigate