Well..ye the HLDS-server is installed on the pfsense-box.. still the same? (that you wrote)..

EDIT: Solved.. Thanks GruensFroeschli :wub: .. Just create a rule like this..

http://static.pici.se/pictures/kaPSpngbE.png (Firewall > Rules)

You have some duplicate entries.
Is there any reason for this?

I see that you use NAT forwardings from multiple WAN IP's.
You did set up VIP's for this, didn't you?

Hey people by the way:

if u wanna make ur gameserver behind NAT appear in the masterlist:
Pfsense should be ur one-and-only friend.
To set it right, u must enable in

Firewall –> NAT --> Outbound

"Manual Outbound NAT rule generation (Advanced Outbound NAT (AON))"

Look Attached Images for closer Instruction :)

The port must be ur gameserver Port, thats allredy forwarded to be reachable from the internet...
this issue is needed for quake3 and counter strike / css for sure. others i didnt test...
ah btw some idea for future Features in Pfsense...
Can we have a field where u can enter port range?

outbound_NAT_port_mapping.png
outbound_NAT_port_mapping.png_thumb
outbound_NAT_port_mapping_details.png
outbound_NAT_port_mapping_details.png_thumb

Have Fun

I think I know now, how to solve this issue, but I still don't know how. Please have a look at my posting in the SIPROXD Transparent Proxy thread.

Often people use /32 to refer to a single IP, regardless of the netmask given by their provider, hence my checking ;)

That arrangement is, to put it mildly, a kludge.  It relies on the OS doing a broadcast for all communications, which not all will do.  I've seen it sometimes set with the host's IP as the gateway and had that work (different OS), but YMMV.

This way pfSense would think there are 3 wans wouldn't it? Does this work?

Yes

And would it be simple to setup the nat configuration I wanted?

Only you can tell :) But i would use port forward. I only want 1:1 one a DMZ nic

Can you post a screenshot of the NAT forwarding you created?
Also the Firewallrule on your WAN.

Did you add a static route on the ADSL-Modem pointing to 10.1.0.1 for the 10.0.0.0/16 subnet?

Because if you dont add a static route your modem has no clue that this subnet even exists and thus will always send the data to it's default gateway. –> To your ISP which will just drop these packets.

I have added this, but unfortunately it doesn't appear to make any difference. A reboot of pfSense is still required to restore functionality of the VPN.

My problem is thet I didnt add static route.

Scenario:
1. I add  static route, bat everything is the same.
2. reboot pfsense end internet is stop working.
3. delete every nat end rules.
4. add nat end rules the same thet I add before delete.
5. everything is OK !!!!!!

;) I dont have Courage to reboot Pfsense again !

The reason for everything is thet I want to limits numbers of connection subnet 10.100.206.0/24 .
What is default in Firewall: Rules: Edit
Simultaneous client connection limit
Maximum state entries per host
Maximum new connections / per second
State Timeout in seconds

Have you made the adjustments to your sip.conf file that are detailed in the following link?
http://forum.pfsense.org/index.php/topic,8682.msg50287.html#msg50287

These changes help tell asterisk what its local network address is so that it is less likely to give the wrong internal address in the SIP packets.

First of all, UPnP and PMP is not the same. Those are different protocols for more or less the same thing. Currently pfSense only supports UPnP. Enable UPnP at the interface that your MAC is sitting behind (probably LAN) and don't use any restrictions for now (unless you feel/fear that you have some untrusted hosts inside your lan). Basically you have to enable it at the interface on which the host will communicate with pfSense. It will create firewallrules and portforwards at the lan interface for you automatically, so you don't have to configure something there. That's what UPnP is doing.

Not sure if BTMM supports UPnP. Though I have Mac's (and love them) I never have used that feature yet as I use VPN-connections for this purpose and more.

http://www.codingmonkeys.de/portmap/index.html is a free tool to easily test if UPnP is working.

Hi, Hoba,

My problem Solved!!!  :D :D :D

Yeah, the MTU figure problem. I put 1500 initially. Wow, thanks so much for this.

Thank you so much.

Kelvin

Maybe this is another thread which will come to the conclusion that running a firewall in a virtual machine is not a good idea  ;)

You tried it wrong

Did you read this thread: http://forum.pfsense.org/index.php/topic,8700.msg48871.html#msg48871 ?

You have an entry to redirect http://zenstudios.blogdns.org.zenstudios.blogdns.org right now.

you need more something along the lines of this:

<hosts><host><domain>psymia.mine.nu</domain>
  <ip>10.0.0.10</ip></host></hosts> <hosts><host>www</host>
  <domain>psymia.mine.nu</domain>
  <ip>10.0.0.10</ip></hosts>