Hello Juan
From my understanding, this is your topology (correct me if I’m wrong:
You are translating:
- 12.1.1.1:80 on the WAN interface to 10.1.1.2:80
- 12.1.1.1:443 on the WAN interface to 10.1.1.4:443
So, you are able to remote into Device 1 from Device 2 ONLY when you connect via the 12.1.1.1:80 address and you cannot connect when you attempt to connect directly to 10.1.1.2. Correct?
If this is the case, then the NAT configuration has nothing to do with the problem. Any communication between Device 1 and Device 2 using the 10.1.1.0/24 IP addresses will be directly between them. So the only thing I can suggest is that there is an access list or a firewall rule on device 1 blocking any connectivity to it from a source address of 10.1.1.4.
Take a look at any such configuration and let us know your progress…
I hope this has been helpful!
Laz