I'm trying to create open guest network (transformed to captive portal later) where traffic is source natted trough controllers wan vlan interface. I have enabled "ip nat source" for the guest vlan and I'm using default guest role as initial role. Traffic seems to go trough but clients gets no data back.
From session table:
Source IP Destination IP Prot SPort DPort Cntr Prio ToS Age Destination TAge Flags
-------------- -------------- ---- ----- ----- ---- ---- --- --- ----------- ---- -----
172.17.0.251 8.8.8.8 17 51496 53 0/0 0 96 0 tunnel 15 13 FSCI
172.17.0.251 8.8.4.4 17 29844 53 0/0 0 96 0 tunnel 15 e FSCI
Do I need something extra? Internet connection is trough static IP assigned to another vlan. I have applied firewall rule set for this vlan, restrictin incoming ports to NATT and management, does it affect? (And interface is marked as a untrusted)
Controller is A620 with 6.1.2.5 OS and AP-105 as a RAP.