Has anyone else experienced weirdness with NAT reflection while on wireguard using a GWN7062? With PFSense, UniFi, and Mikrotik, when I create a port forwarding rule with NAT reflection, it works whether I am on the local LAN or on Wireguard VPN. With the grandstream, it does not. It seems like the source group dictates what network the NAT reflection HAS to come from, I would have to make double the rules in order for me to be able to access my local mail server while on VPN. I have asked Grandstream support about it, but I must not be explaining myself well enough because they don’t understand the “problem”. Anyone else have thoughts on this?
Paging @James
Have you tried this?
I assume your accessing the mailserver via a hostname?
What is your DNS on the wireguard connection?
Do you have wireguard set up as a full tunnel or split tunnel?
Sorry if I am not understanding the issue.
If you only access your mail server from internal network or via vpn, you can use a dirty hack in a way of local hosts file.
1 Like
There are a few other quirky things I am waiting for Grandstream to sort out. In the meantime I just went back to my Mikrotik firewall. Thank you all for the suggestions.
Do you have the DNS server set to the Grandstream 's IP in your wireguard config?