09-24-2011, 05:17 PM
Hi ncsnetwork, and welcome to the User BB!
Your firewall rule in #4 would need to be Source: Any or Internet instead of WAN1. From your first post, it appears that your configuration is correct if qa has the Astaro as its default gateway, so that test in Post #4 shouldn't give any different result.
Please [Go Advanced] below and show an actual pic of your failing DNAT rule. Also, try trollvottel's Full NAT suggestion (Source Translation: Internal (Address)) just to help figure out what's happening.
In general in D/SNAT rules, it's a best practice to leave unchanged fields blank.
Cheers - Bob
ACE V7 - Astaro Preferred Partner since V3
SCA/UTM - Sophos Gold Solution Partner
Addicted to my iPhone!
Last edited by BAlfson; 09-24-2011 at 06:50 PM.