Damn it. DAMN it. DAMN IT!
I was supposed to swing default route tonight to a new set of firewalls at our main site. Everything was going along swimmingly (well, not really, but lets suppose it was the case) when we ran into a real show stopper. These freaking new firewalls can’t do a NAT to an IP address that is not in the same freakin network as their external interface. The stupid gui said that we could try a secondary IP, but the box that we’re working with doesn’t support secondary ips… (not that I was a big fan of that half-assed solution)…
ARGH…
I dont’ know whether i’m more frustrated by the fact that I spent 5 hours working on this, or that the implementation of NAT is stupid on the devices.