• 0 Votes
    4 Posts
    357 Views
    R

    Fixed it.

    Had to open port 80 & 443 for the webserver using it's IP.

    Makes sense, as the other webserver IP was open and so all traffic was getting routed over there. Opened the new IP and then HAProxy managed the show using backend and frontend.

    Thanks @Bob-Dig for your willingness to help and for your time - appreciate it mate.

    Regards,
    Rav

  • NAT + Proxy Issues on 2.4.5?

    2
    0 Votes
    2 Posts
    149 Views
    M

    Please ignore. This is user failure.

  • Port's not opening using NAT or HAProxy

    3
    0 Votes
    3 Posts
    257 Views
    S

    Hi,

    I was able to resovle the issue, seems that something in the configuration was causing the issue, clearing all the settings and just setting this up worked.

  • Can not access Moodle from WAN

    5
    0 Votes
    5 Posts
    478 Views
    S

    Hello!

    I usually setup my NAT rules with a dest addr of "WAN Address" or a VIP. I have never used "WAN Net".

    John

  • DNS Redirect to pfsense, but external dns reuests coming through

    2
    0 Votes
    2 Posts
    272 Views
    4

    @gwaitsi there is something else with this i don't understand.

    clients that don't use pfsense i.e. android, and win with comodo have trouble resolving dns queries via http but no problems with traceroutes, ping, etc

    if i turn off the The Firewall DNS rule, dns does not resolve on the client - so appears to be trapped by the block rule as required. however. if i use dig @8.8.8.8 dns request resolve.

    Is this correct behavior, if not. What am i doing wrong?
    If so, why do why dns servers try to reach my clients on port 53 if they are being trapped by the NAT rule?

  • Static Route for other networks

    5
    0 Votes
    5 Posts
    386 Views
    G

    Hi All,

    Issue fixed adding a NAT rule.

    alt text

    That automatically has updated the WAN:
    alt text

    regards
    Giovanni

  • NAT and transparent fw

    4
    0 Votes
    4 Posts
    569 Views
    F

    Thanks :) I struggled with not getting traffic from outside and in. But I had to spesify the local IP in the fw rules (and not the virtual one) and than it seems to work just fine with 1:1 NAT.

    Should there be any notificeable speed difference to talk about on 1:1 vs transparent?

  • Cloudflare URL alias and NAT

    1
    0 Votes
    1 Posts
    305 Views
    No one has replied
  • IPSec VPN NAT/BINAT is translating to network address?

    1
    0 Votes
    1 Posts
    210 Views
    No one has replied
  • Trouble in FTP-land

    4
    0 Votes
    4 Posts
    686 Views
    GertjanG

    @holunde said in Trouble in FTP-land:

    so it has addresses from 192.168.1.129 - 192.168.1.254, broadcast 192.168.1.255.

    I was thinking 1 to 127 - 128 and urther up using bit 8 (set) which lies outside the mask.
    For memory :

    /24 1111 1111 1111 1111 1111 1111 0000 0000 /25 1111 1111 1111 1111 1111 1111 1000 0000

    @holunde said in Trouble in FTP-land:

    192.168.241.3

    Ok, I get it - I guess. The FTP server makes up some IP being totally outside it's network.
    Like : I'm a.b.c.d - talk back to using e.f.g.h.
    I always thought FTP servers messed around with sets of ports numbers - not IP adrresses.

    If NATting was used, then IP becomes important - but that is not the case here. It's just direct routing.

    @holunde said in Trouble in FTP-land:

    what you think of this whole mess?

    Like millions : so happy that this FTP mess is finally over .....

    Still, I'm using an FTP client and server, a DVR Dashua record on my LAN network that blast several screenshots every 20 seconds to my web server (webcam !), a dedicated server some where on the Internet.
    The FTP server is locked to my @work WAN IP. No TLS, nothing the like because the images are posted anyway.

    What about a clean setup :
    LAN default 192.168.1.1/24
    OPT1 : 192.168.2.1/24
    And WAN something else, also /24

  • NAT Dual WAN

    7
    0 Votes
    7 Posts
    541 Views
    S

    @Crunk_Bass

    It happens to both me and other players. As far as NAT reflection goes I do have it set in my NAT Rule for the ports as i previously couldn't join the server when on a single connection. I imagine i might be able too now as my client will come out of WAN 2.
    ac303106-82c6-430f-8363-b0e3710fd22a-image.png

    However I do not have it set in the advanced settings, not sure if I now need it for some reason?

    bf0e976e-827d-45e8-a654-b4157b11971c-image.png

    Would the fact that the server tries to go out and back in cause an issue? Almost feels like it goes out, but never makes it back and then falls back to the firewalls default routing? Really not sure.

  • NAT to ISP Modem via OpenVPN

    2
    0 Votes
    2 Posts
    262 Views
    C

    Maybe you need to add an additional outbound NAT rule?
    Something like Interface: Modem Interface, Source: OpenVPN Subnet, Destination: Modem Address, NAT Address: Modem Interface Address

  • NAT with dual WAN inbound

    2
    0 Votes
    2 Posts
    209 Views
    C

    To balance between the two IPs simply add another record to your domain.
    It is called round-robin or load balancing DNS. Here is a quick explanation: https://www.nginx.com/resources/glossary/dns-load-balancing/

  • Outbound NAT with multiple port range

    1
    0 Votes
    1 Posts
    228 Views
    No one has replied
  • Best pattern for redirection of NTP, DNS etc

    1
    0 Votes
    1 Posts
    170 Views
    No one has replied
  • Forwarding port 80

    8
    0 Votes
    8 Posts
    572 Views
    L

    Not yet, but I promise I will do my homework this weekend!

  • NAT for 5060/UDP

    2
    0 Votes
    2 Posts
    278 Views
    P

    disable NAT, you don't need it

  • source IP for file share access over IPSEC tunnel for site to site VPN

    4
    0 Votes
    4 Posts
    403 Views
    V

    Thanks for you update.

    I have implemented it by using proxy Linux instance which is doing port forwarding.

  • Mobile client/site-to-site VPN tunnel NAT issue

    3
    0 Votes
    3 Posts
    295 Views
    M

    Hi i've got the same problem, i can NAT my OpenVPN Client with a PfSense virtual IP only with my Local LAN, it doesn't work over remote Ipsec Network.
    I've got 20 Ipsec VPN tunnel and i can't create addition Phase2 on all tunnel.

    Bye
    Gabriele

  • 0 Votes
    1 Posts
    529 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.