TRB140 zerotier rewrite source IP

NETWORKING SOLUTIONS
1

Hello,

I have TRB 140 fw TRB1_R_00.07.11. TRB lan IP 172.16.8.1/24

I used before zerotier configuration with this device (with older firmware) but to recieve answer from devices inside TRB140 LAN all devices had set 172.16.8.1 as a gateway.

Is it a possible to use SNAT (source NAT) rule to override sender IP to 172.16.8.1??

I tried to do it but it’s not working as I would expect:

image
image1536×332 15.8 KB

Packets from zerotier still have original source ip address instead 172.16.8.1. Is it any workaround to achieve it in TRB140??

Reason to do it is that in many cases TRB us used as remote access gateway to devices which should have gatway address set to different address as TRB. If would be possible to make rule/setting that inside package source ip address would be changed to TRB address it would great.

If somebody have or had similar issue it would be nice to share your experience how to resolve it.

image
image746×383 37.3 KB

Many thanks in advance
Regards
Wojciech

3

Hello,

If I correctly understand your setup, then it should be as simple as enabling Masquerading on the ZeroTier firewall zone on the TRB:

image
image1519×346 25.7 KB

Or should it be the other way around - packets coming to ZeroTier should have their source IP rewritten?

EDIT: I believe I understand the configuration now, could you try enabling the same setting but on LAN interface?

image
image1898×431 36.7 KB

Best regards,

4

Hello @Daumantas,

many thanks for Your reply. Enabling masquerading works and if it is not done here other way is to rewrite src addr in src nat rule. Many thanks for Your support!!