So what about outbound NAT or masquerade? I mean again pertaining to my topology since natting wont be enabled on firewall I’ll just let pass the traffic from firewall to Peplink and then configure the outbound rule for entire range on peplink? Is this a right approach?
Plus how about 1-1 nat for outbound rules as well. I mean see if I have range 192.168.2.0 behind firewall which has a mail server in it and 192.168.2.0 is completely natted or masqueraded to talk to Internet my outbound traffic would work but what if I have mail server 192.168.2.50 from same range which should be statically natted which one will override? Outbound nat for entire range or Static NAT for 192.168.2.50
INTERNET===>[18.104.22.168[PEP-LINK]10.1.1.1]]====>[10.1.1.2[FIREWALL]192.168.2.1]]=========LAN192.168.2.0/24 and mail server 192.168.2.50
192.168.2.0/24 NATTED with 22.214.171.124 [Peplink outbound IP]
192.168.2.50 NATED WITH 126.96.36.199