Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    LAN>Internet>WAN

    Scheduled Pinned Locked Moved NAT
    6 Posts 2 Posters 668 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      Ilya.V
      last edited by

      Good afternoon friends!
      There is a server on my local network. Some ports on Pfsense are forwarded to it. I can access it via the Internet, but not from my local network.
      Can you please tell me how this can be fixed?

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @Ilya.V
        last edited by

        @ilya-v

        https://docs.netgate.com/pfsense/en/latest/recipes/port-forwards-from-local-networks.html

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        I 1 Reply Last reply Reply Quote 0
        • I
          Ilya.V @johnpoz
          last edited by

          @johnpoz Sorry, I don't explain well. The bottom line is as follows.
          The server to which there is no access must be accessible from the Internet, and not from the LAN. That is, I type the domain name in the address bar of the browser, the external dns resolves it to the ip address of the external interface and through it I have to get to the internal server. There are two providers, in this case - one for the output, the other for the input.

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @Ilya.V
            last edited by

            @ilya-v that article explains exactly what.. Did you setup nat reflection? If you want to hit your public IP and get to the server, then you have to use nat reflection or say the haproxy.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            I 2 Replies Last reply Reply Quote 0
            • I
              Ilya.V @johnpoz
              last edited by

              @johnpoz No, I did not configured NAT Reflection.
              There is the same network layout in the second building.
              There, from the inside, I can get through the Internet to an external IP, in the first one I configured NAT in the same way, but the results are different.

              1 Reply Last reply Reply Quote 0
              • I
                Ilya.V @johnpoz
                last edited by

                @johnpoz Many thanks)
                Compared the settings of both Pfsense - NAT Reflection was disabled.
                I set the Nat + Proxy mode, everything worked.
                Thanks again!

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.