Hi !
I have set hairpin (reflection) NAT and load-balancing according to this post:
Everything else, including traffic between INT ↔ DMZ, access from WAN → DMZ, work fine.
eth0 - WAN1, eth1 - WAN2, eth2 - DMZ (192.168.1.xx), eth3 - INT (192.168.0.xx)
How to fix this? Thanks in advance.
# Allow traffic between DMZ and INT.
set load-balancing wan rule 4 'exclude'
set load-balancing wan rule 4 inbound-interface 'eth3'
set load-balancing wan rule 4 destination address '192.168.0.0/23'
set load-balancing wan rule 4 source address '192.168.0.0/23'
set load-balancing wan rule 5 'exclude'
set load-balancing wan rule 5 inbound-interface 'eth2'
set load-balancing wan rule 5 destination address '192.168.0.0/23'
set load-balancing wan rule 5 source address '192.168.0.0/23'
# ****************************
# NAT Reflection (hairpin).
set load-balancing wan rule 30 description 'for NAT reflection 1 (Hairpin NAT)'
set load-balancing wan rule 30 'exclude'
set load-balancing wan rule 30 inbound-interface 'eth0'
set load-balancing wan rule 30 destination address 'isp1.xx.xx.ip'
set load-balancing wan rule 30 protocol all
set load-balancing wan rule 31 description 'for NAT reflection 2 (Hairpin NAT)'
set load-balancing wan rule 31 'exclude'
set load-balancing wan rule 31 inbound-interface 'eth1'
set load-balancing wan rule 31 destination address 'isp2.yy.yy.ip'
set load-balancing wan rule 31 protocol all
set nat source rule 30 description 'NAT Reflection (Hairpin NAT) 192.168.0.0/24'
set nat source rule 30 destination address '192.168.0.0/24'
set nat source rule 30 outbound-interface 'eth3'
set nat source rule 30 source address '192.168.0.0/24'
set nat source rule 30 translation address 'masquerade'