Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    1. Home
    2. pfSense® Software
    3. NAT
    Log in to post
    • Newest to Oldest
    • Oldest to Newest
    • Most Posts
    • Most Votes
    • D

      Minor strange behavor of pftpx when i reconfigure something.
      • duck7207

      4
      0
      Votes
      4
      Posts
      2711
      Views

      S

      Well changing the FTP helper status on or off will alter pftpx from running.  I'll check into the bogons piece.

    • K

      Switch from symmetric NAT to cone NAT
      • keefe007

      2
      0
      Votes
      2
      Posts
      4761
      Views

      S

      http://forum.pfsense.org/index.php?topic=104.0

    • C

      NAT is not working NAT 1:1 for IP subnet LAN
      • camil

      2
      0
      Votes
      2
      Posts
      2750
      Views

      H

      Did you create firewallrules to allow the incoming traffic? Only 1:1 NAT is not automatically passing all traffic (which would be a bad idea anyway).

      Let's say one of your IPs is a webserver for example you need a pass rule like this:

      protocol tcp
      source IP any
      sourceport any
      destination IP <lan-ip of="" mailserver="">(NAT comes first, then firewallrules are applied so you have to use the internal IP as destination)
      destinationport http (80)</lan-ip>

    • J

      Port redirection, FROM parameter
      • Juve

      2
      0
      Votes
      2
      Posts
      2569
      Views

      S

      Not likely, we are not adding features.  We are only adding a new option when it corrects a bug.  Unfortunately this is not a bug and you can control it more tightly with firewall rules.

    • P

      ADSL PPPOA/VC
      • puntura

      16
      0
      Votes
      16
      Posts
      9350
      Views

      H

      Help with docs is always appreciated. Good luck.

      http://doc.pfsense.org

    • J

      DMZ and FTP Out
      • josh

      15
      0
      Votes
      15
      Posts
      10021
      Views

      S

      Add the rules to allow ftp to talk to localhost.

    • J

      Weird…. Can't access certain sites
      • josmo

      7
      0
      Votes
      7
      Posts
      4288
      Views

      B

      @josmo:

      Ok here's the deal and it's got me very confused (By the way great job on this PFsense team so far this is great).

      My Config.

      LAN IP 192.161.10.1 with DCHP enabled
      WAN 70.89.221.233 / 8
      wan gateway 70.89.221.238

      now from internally I can view and ping most sites.  But There are a few I can't like.  stumbleupon.com (70.85.3.132) and suvault.com (70.84.208.122)
      I know this is an issue with pfsense or the way I have it set up because when I plug in the old linksys with the same wan ip and lan ip it goes to these sites just fine and I can ping them.  Anyone have any clue why this is going on?????

      Thanks,

      This looks like a Comcast business connection.  I guarantee that WAN is supposed to be /29.  I'm in the same 70.0.0.0/8 CIDR block (on two seperate connections) and /8 is NOT the correct netmask for machines attached to it.

      –Bill

    • T

      To NAT or not to NAT thats the question !
      • tobsen

      8
      0
      Votes
      8
      Posts
      4712
      Views

      P

      OK … its working now in PREBETA2 ... so it should be working in the upcome release (whenever that will be)

      Thanks guys!!!

    • K

      SIP VoIP Provider
      • keefe007

      1
      0
      Votes
      1
      Posts
      3034
      Views

      No one has replied

    • T

      NAT to 2 LAN/Subnet?
      • tesna

      4
      0
      Votes
      4
      Posts
      4010
      Views

      H

      exactly.

    • P

      Routed Subnet on LAN
      • Puck

      11
      0
      Votes
      11
      Posts
      9528
      Views

      P

      Fair enough.  Thanks for all of your help Hoba.

    • J

      Creating Nat rule for bittorrent for two people.
      • Jesse7

      3
      0
      Votes
      3
      Posts
      3213
      Views

      J

      Cool thanks.

    • B

      NAT port 80 kills web GUI == BIG PROBLEM
      • bruor

      6
      0
      Votes
      6
      Posts
      4904
      Views

      B

      thanks, for the fast reply hoba,  exactly what i thought it did,  and gladly not important at all for me since it doesn't seem to work without disrupting that port on the lan interface  ;)

    • T

      Internal Web Server
      • thinair

      10
      0
      Votes
      10
      Posts
      6962
      Views

      B

      nat reflection should only take effect for packets that are destined to the wan interface right ?

      additionally,  if nat reflection was forwarding those packets to my web server, i would have gotten the page that is hosted on it…

      let me know if there is anything i can do as well to help with this.

    • Z

      Redirection of http traficc to web-proxy DMZ server
      • zaterio

      1
      0
      Votes
      1
      Posts
      4474
      Views

      No one has replied

    • C

      Adding an proxy machine
      • Ctek

      4
      0
      Votes
      4
      Posts
      4416
      Views

      S

      @sirocco:

      I tried, but in 0.94.12 it doesn't work.

      I have three interfaces WAN, LAN, OPT - port forward on LAN to proxy on LAN not work, the IF field on screen is empty.
      Any ideas?

      Proxy is connected to LAN and to OPT1 to avoid loop with port forward.

      There is a known problem with this feature.  I still need to fix it.

    • D

      Port Range
      • deadlygopher

      2
      0
      Votes
      2
      Posts
      3108
      Views

      S

      @deadlygopher:

      What is the maximimum range you can specify for a single port forwarding rule?

      1-65534

    • X

      Maximum Firewall States
      • xphat

      4
      0
      Votes
      4
      Posts
      5696
      Views

      X

      Thanks Billm :)

    Products

    • Platform Overview
    • TNSR
    • pfSense
    • Appliances

    Services

    • Training
    • Professional Services

    Support

    • Subscription Plans
    • Contact Support
    • Product Lifecycle
    • Documentation

    News

    • Media Coverage
    • Press
    • Events

    Resources

    • Blog
    • FAQ
    • Find a Partner
    • Resource Library
    • Security Information

    Company

    • About Us
    • Careers
    • Partners
    • Contact Us
    • Legal
    Our Mission

    We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

    Subscribe to our Newsletter

    Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

    © 2020 Rubicon Communications, LLC | Privacy Policy