• How to add username/password for fort forwadring in pfsense

    26
    0 Votes
    26 Posts
    3k Views
    P
    I also think VPN is the way to go (OpenVPN would be my choice), especially if you already have VPN for other staff. Simply configure overrides to restrict your development LAN from general users, and then create Clients for Win, Mac & Linux. Basic users can simply install the clients, wheres more knowledgeable peeps can use the raw config files or package. I have done exactly this for various customer lab setups that required different access groups for various servers.
  • After NAT, the public CARP cannot connect to each other (timeout)

    2
    0 Votes
    2 Posts
    269 Views
    D
    I tried to change the mounted CARP WAN IP from /32 to /24 to see if that can fix the issue, but seems cannot. I am doing 1:1 NAT with both inbound and outbound. And i am not sure if that issue is related to NAT reflecting.
  • Pfsense with Unifi USG

    2
    0 Votes
    2 Posts
    683 Views
    NogBadTheBadN
    Firewall -> NAT -> Outbound Disable Outbound NAT rule generation. (No Outbound NAT rules)
  • 2 XBoxes, Both Open NAT, 1 Cannot Play?

    3
    0 Votes
    3 Posts
    478 Views
    C
    @Gilera Buying more IP’s is not an option for me. I agree though, I do not understand how a cheap supplied WiFi router can give you open NAT on both boxes and play online no issues. I did notice the second Xbox trying repeatedly to open port apon port trying to connect to COD serves when pfsense was configured to give both boxes Open NAT. Almost seems like pfsense is not keeping track of the ports and the traffic is not getting thru for the second one. Also the supplied WiFi router from charter seemed like it was a static port hybrid, where it would static port if it was able to, but then change the destination port if it could not. In the end, I went with one Xbox open nat( the wife’s) and one strict nat(mine). The only thing I changed was making mine non static port in the NAT rules. I can still play games this way but not sure why. It plays like it’s open, but it’s reporting as strict.
  • NAT DMZ to LAN works but...

    12
    0 Votes
    12 Posts
    1k Views
    O
    @nozz Thanks for your time with this. The same way, work's but enable communication with DMZ IP and Internal IP too. I work this with ASA and Checkpoint, and do it. Oscar.
  • Open VPN, Portforwarding

    10
    0 Votes
    10 Posts
    549 Views
    ?
    Sorry my mistake. I solved it by myself. Forgot to activate that i can see traffic that passed the firewall. I only saw traffic that got blocked.
  • Nat issues (port forwarding) across a private connection

    22
    0 Votes
    22 Posts
    1k Views
    johnpozJ
    Lets us know how it turns out.. have to assume your forwarding the port to something else that is answering.. If just an router and not natting then there shouldn't be any forwards on it.. If its also firewalling - then should just be firewall rules allowing to stuff behind hit.. You sure its not natting? And just routing.
  • Static IP NAT to LAN IP

    8
    0 Votes
    8 Posts
    785 Views
    slkamathS
    @Crunk_Bass Thank you so much. I will do the way you guided me and will inform you the result. Lokesh Kamath
  • 0 Votes
    8 Posts
    1k Views
    L
    Thank you very much .. will try it out and get back to you .. i did not configure the baracuda side.. but i will make the changes on my side (site A)
  • Port Forwarding showing Routers IP

    5
    0 Votes
    5 Posts
    435 Views
    johnpozJ
    The only time you would ever use nat reflection is as a work around for a horrible app that has your wan IP hard coded in it sort of thing.. Even then it should only be a temp work around until you can slap some sense into who ever created the app ;) As long as the app uses dns to find the dest, you can always just have that dns point to whatever IP you want.
  • nat question

    2
    0 Votes
    2 Posts
    261 Views
    ?
    This is easy. First you'll have to make sure you turn off auto-rule generation (if you haven't already), because it'll use all available ports, and you can't edit the auto-generated rule. Then create a rule that allows outbound NAT, and in the "Port or Range" box (with the description 'Enter the external source Port or Range used for remapping the original source port on connections matching the rule.') put in 6000:7000
  • Netgate/PFSense doesn't see server on network

    2
    0 Votes
    2 Posts
    308 Views
    johnpozJ
    Prob put a wrong mask on the server.. If the server is on the same L2 as all the other devices that pfsense can ping.. Then its issue on the server.. Validate your setting.. Simple test is just set the server to dhcp - does that work? If so - double check what you did wrong with the static settings. Or maybe you can not ping the pfsense because of firewall on the server? Without exact details it is impossible to help with what is the issue. Can the server ping pfsense, and other devices on the network?
  • LAN and WAN Printer Port Forward Help

    1
    0 Votes
    1 Posts
    252 Views
    No one has replied
  • External and internal ports swapping

    Moved
    7
    0 Votes
    7 Posts
    557 Views
    S
    face palm That actually makes more sense Also the any source was for testing from 4G, that’s a mistake you only make once... I use VPN for most things except at work, it breaks to many things when I leave the work laptop at home But thank you for the assistance :)
  • NAT is not translating the inside IP address of my interface

    2
    0 Votes
    2 Posts
    512 Views
    DerelictD
    Port Forwards translate the destination address, etc. Outbound NAT translates the source address, etc. Make an outbound NAT rule for source any destination 192.168.10.254 port 80 with a NAT address of the pfSense interface address (192.168.10.252) on the 192.168.10.0/24 interface.
  • NAT WAN-LAN Correlation Logs

    3
    0 Votes
    3 Posts
    335 Views
    J
    Works as expected, thanks so much!
  • [HELP] Port forwarding..

    1
    0 Votes
    1 Posts
    174 Views
    No one has replied
  • Issue wih multiple SSH connections and Port forwards

    1
    0 Votes
    1 Posts
    250 Views
    No one has replied
  • I Created Outbound NAT not working

    8
    0 Votes
    8 Posts
    715 Views
    V
    There's a policy routing rule needed if you want to route out traffic to multiple WANs: https://docs.netgate.com/pfsense/en/latest/routing/directing-traffic-with-policy-routing.html That's a firewall rule with a gateway option. You have to add it to the interface which is facing to the 172.31.98.0/23 subnet.
  • NAT-T VPN IPSEC

    1
    0 Votes
    1 Posts
    270 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.