Additonal masqurade in nat

saint_patrick · July 14, 2023, 5:09pm

Good evaning. Today i noticed my internet is down and i cheked my nat, caus it is always red if it is down. but it was not red, there is an extra masqurade that zima is adding. i disabled it but it re-enable after 1 min. i moved it down but zima is moving it back to the top. what is happening?

support.zima · July 14, 2023, 6:45pm

Thanks for your feedback!

In pools
did you check if NAT is checked?

If it is checked, it propagates the NAT settings to the mikrotik. The sync happens every minute so it would be an expected behaviour.

So just see the section IP pools and uncheck the NAT box, it fixes it.

Let us know how it goes and if you have any other questions or concerns.

saint_patrick · July 15, 2023, 8:48am

That is strange i have no nat selected in IP POOL but it is appearing on my fire wall Nat. this is now recintly that this is happening, is there an update that was released?

support.zima · July 15, 2023, 10:07am

The screenshots that you shared are totally normal.

NAT is not selected in zima IP pool so it will not set NAT in Mikrotik.

As for the second one that you are seeing on Mikrotik, yes it is created and maintained by zima but it does not have an effect on your configuration because the “zima-nat” is empty.

Yes this was part of the new release. It is backwards compatible for most setups. It has been heavily tested to avoid any disruptions.

Based on those details, I could confirm that your disconnection is not related to zima recent release.

Have you managed to solve the disconnection problem on your router? what was it from?

Feel free to share any further feedback or questions. Happy to assist

saint_patrick · July 15, 2023, 5:28pm

Yes my connection was fixed after i noticed it was disconeted befor. All i do is reboot. then all was working again.

zaw · November 3, 2023, 7:09am

zaw · November 3, 2023, 7:10am

I did not seen NAT Check Box in my page, why?

julien · November 3, 2023, 10:58am

Hello there,

The NAT checkbox is in Router Edit page > IP Pools tab.

Verification

Check your Firewall > Address Lists on the router:

When NAT is enabled:

zima-nat address list exists, and commented with the related pools.

image838×400 12.7 KB

When NAT is disabled

zima-nat doesn’t exist.

image848×370 11.1 KB

About the Firewall NAT rule:

This rule is used with zima-nat address list and is always synchronized.
If the address list doesn’t exist, this rule has no effect.

Verify the rule behaviour with bytes and packet counters:

Hope this helps!