-
New Feature
-
Resolution: Done
-
Medium
-
None
-
None
-
None
Implement mechanism to bypass NAT translation for protocol specific communication. At the moment packets from local application using the same source IP address as NAT outside interface are dropped. We should have an policy API message & CLI command containing IP protocol, source address (NAT outside interface) and destination address (remote application endpoint).
CLI commands:
nat bypass policy add protocol <ID> local <interface>|<ip4-addr> remote any|<ip4-addr> [del]