WANGroup(s) for NAT rules
-
When I first started seeing the default WANGroup being setup, you couldn't use it for NAT forwarding, just Rules.
I have now noticed you can select this as an Interface under NAT forwarding. Though doing a quick test on this does not seem to work as I would hope.
Am I looking at a configuration issue or this is not expected to work?
It would be nice not to have to duplicate rules for every WAN.
-
You mean an interface group as opposed to a gateway group?
Port forward (inbound) NAT rules?
In pfSense 2.5.2?
Steve
-
@stephenw10 said in WANGroup(s) for NAT rules:
You mean an interface group as opposed to a gateway group?
Port forward (inbound) NAT rules?
In pfSense 2.5.2?Yes, yes and actually 2.4.4 though could test on the new boxes we're about to migrate to.
Edit: Just checked on 2.5.2, not working either.
-
Ah, OK. Then, yes, definitely test in 2.5.2 first if you can. There are also a number of fixes in 2.6 that are probably worth testing here.
Steve
-
Just beat me to my stealth edit, 2.5.2 also not working.
Would probably just wait until 2.6 is offered before trying it.
Am I wrong that its supposed to work in this way though?
-
Unclear. If the gui allows it though I'd expect it to. Conversely it should throw an error if it doesn't work. Let me see if I can replicate it...
-
It does seem to work, something else was getting in the way.
I was doing my initial testing with ssh port 22, when that is set to WANGroup (instead of wan1,wan2,etc) it seems to want to go to the ssh server on the router.
Instead tested it with something else (that pfSense wouldn't have its own port listening) and that works okay.
This is on 2.5.x, it does not work on 2.4.x.
