We have an xtm22 watchguard (should be similar on all models) but we have 2 external ip addresses for the sake of this ill use 220.127.116.11 and 18.104.22.168.
the watchguard external ip address is 22.214.171.124 and dynamic nat is using this for outgoing traffic and inbound main services SNAT using this. the issue i have is a webserver using 1:1 NAT of 126.96.36.199 -> 192.168.100.2 is not allowing internal users to connect using the external ip address i.e http://188.8.131.52
. (it works fine from the outside)
could the issue be the way the watchguard handles this traffic now its 1:1 nat rather than just an snat like it used to be (which worked fine but outbound traffice wouldnt use 184.108.40.206, it would use 220.127.116.11 which was not wanted.)