Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pfsense and OVH Configuration [HELP]

    Scheduled Pinned Locked Moved Virtualization
    14 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      infiniteX @stephenw10
      last edited by

      @stephenw10 Thank you for response, but still the same. still denying attempt to access database from 1433 going to 39101 port.

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Between which hosts? How are you connecting?

        I 1 Reply Last reply Reply Quote 0
        • I
          infiniteX @stephenw10
          last edited by

          @stephenw10 I'm connecting to the WAN address using an IP alias, a virtual IP (VIP) specifically. Within my CentOS 7 machine, I've set up port openings for two services: port 39101 for the web server and port 1433 for the database server. Both services are hosted on the same CentOS machine.

          When attempting to access port 39101 for the web server, there are no issues, and I can successfully log in. However, when I attempt to access port 1433 for the database server, the connection is initially established but then abruptly closes. without encountering any errors.

          Upon examining the server logs, it becomes apparent that port 1433 is being opened but then subsequently closed. This behavior is unexpected and is hindering the intended communication between these ports.

          nat.png

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            Check the states in Diag > States when you're trying to connect so see what the firewall is doing. If gets immediately rejected though it sounds like it could be forwarding correctly and the CentOS server is blocking it.

            I 1 Reply Last reply Reply Quote 0
            • I
              infiniteX @stephenw10
              last edited by

              @stephenw10 here is the result. I tried to spam the login. so we can capture the result

              6d65929a-de0a-4d55-94fc-1a0ff31502f0-image.png

              1 Reply Last reply Reply Quote 0
              • stephenw10S
                stephenw10 Netgate Administrator
                last edited by

                Those states are for 38101 and you said 39101 above. But I see no states at all for 1433.
                Is that traffic actually arriving at the WAN? Try adding logging to the pass rule on WAN. Or run pcap for port 1433 on WAN.

                I 1 Reply Last reply Reply Quote 0
                • I
                  infiniteX @stephenw10
                  last edited by

                  @stephenw10 Sorry how to perform PCAP 1433 on WAN?

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S
                    stephenw10 Netgate Administrator
                    last edited by

                    In Diag > Packet Capture like:

                    Screenshot from 2023-10-11 18-11-08.png

                    I 1 Reply Last reply Reply Quote 0
                    • I
                      infiniteX @stephenw10
                      last edited by

                      @stephenw10 Hi, base on the record. it didn't reach 1433 Port. it just stuck in 38101.

                      1 Reply Last reply Reply Quote 0
                      • stephenw10S
                        stephenw10 Netgate Administrator
                        last edited by

                        Well pfSense can't forward traffic that never arrives. 😉

                        Maybe that port is blocked by OVH or your ISP.

                        Steve

                        I 1 Reply Last reply Reply Quote 0
                        • I
                          infiniteX @stephenw10
                          last edited by

                          @stephenw10 Hello sir Steve. I got some error.

                          5e1b059b-c4a4-48d2-a293-d6e6bbcfcf92-image.png
                          I attempted to use SSH to access a CentOS 8 database server. Additionally, I used telnet to check port 38101. The connection was established, but it abruptly closed.

                          53fe7738-5270-4289-a0f3-0ee5019210d9-image.png

                          Port Forward Config

                          a73e1bed-758e-40c4-beff-f7e0751e96e8-image.png
                          Nat 1:1 Config and Outbound = Hybrid

                          2fcf087f-fefc-41a3-bba9-ced2740dd3ff-image.png
                          WAN Config

                          dfcb90c4-1b9c-4d29-82d9-bd1fe36d2973-image.png
                          NAT Config

                          1 Reply Last reply Reply Quote 0
                          • stephenw10S
                            stephenw10 Netgate Administrator
                            last edited by

                            What do the states show when you test that?

                            I assume that CentOS alias contains the correct two ports?

                            1 Reply Last reply Reply Quote 0
                            • First post
                              Last post
                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.