Loop back NAT: Traffic dropped as Policy Drop
03/26/2020 76 8418
When configuring a loopback NAT and running traffic matching this rule, the traffic is dropped as "Policy Drop".
The traffic is dropped due to a missing or incorrectly configured Access Rule.
Configure an access rule to allow traffic from the private Source IPs to the public IP of the destination.
- Source zone is the LAN with subnet 192.168.1.0/24
- The server is in DMZ zone with private IP 10.1.1.2 reachable through a public IP 126.96.36.199.
The access rule should be created from LAN to DMZ with:
- Source: 192.168.1.0/24
- Destination: 188.8.131.52
The access rule is matched before the NAT Policy is applied so when the traffic arrives to the SonicWall the destination IP is still the public even if the SonicWall already knows what's the destination zone.