-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
Loop back NAT: Traffic dropped as Policy Drop
03/26/2020 
104 People found this article helpful
484,122 Views
Description
When configuring a loopback NAT and running traffic matching this rule, the traffic is dropped as "Policy Drop".
Cause
The traffic is dropped due to a missing or incorrectly configured Access Rule.
Resolution
Configure an access rule to allow traffic from the private Source IPs to the public IP of the destination.
Example:
- Source zone is the LAN with subnet 192.168.1.0/24
- The server is in DMZ zone with private IP 10.1.1.2 reachable through a public IP 1.1.1.1.
The access rule should be created from LAN to DMZ with:
- Source: 192.168.1.0/24
- Destination: 1.1.1.1
The access rule is matched before the NAT Policy is applied so when the traffic arrives to the SonicWall the destination IP is still the public even if the SonicWall already knows what's the destination zone.
Related Articles
- How to block like/comment/post/share features of Facebook using App Rules
- How to block various YouTube features using App Rules
- How can I enable or disable SonicWall firewall management access?
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO