Meraki

JavierMedina_VC · ‎Jan 28 2021

Instead of making port forwarding to a specific local hosts , is there any way to add a subnet or range to the local hosts field?

May have hundreds of hosts that need access to from the outside

Bruce · ‎Jan 28 2021

Port forwarding has to be to a specific host, essentially what you are telling the MX to do is when it receives a connection request on a particular port forward that request to an internal host at a specific IP address. It would make no sense to try and forward a port to a subnet.

By default your internal hosts should be able to access the internet across the MX. The MX does PAT (port address translation) for your internal hosts to its external WAN address.

If you have multiple public IP addresses you can setup different 1:1 or 1:many NATs for inbound traffic.

Is there a specific use case you are trying to achieve?

BrandonS · ‎Jan 28 2021

Can you explain what you are trying to achieve in more detail?

- Ex community all-star (⌐⊙_⊙)

KarstenI · ‎Jan 28 2021

If you need a 1:1 NAT for this amount of hosts, a little script with a loop and an API call could be used:

https://developer.cisco.com/meraki/api-v1/#!get-network-appliance-firewall-one-to-one-nat-rules

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

JavierMedina_VC · ‎Feb 9 2021

the solution to this was to go to beta firmware and have meraki tac issue the NO Nat Feature

doing this allowed us to have the Inbound Firewall Rule Feature.

Meraki

Community

Port forwarding multiple local hosts

Port forwarding multiple local hosts