Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pfsense and OVH Configuration [HELP]

    Scheduled Pinned Locked Moved Virtualization
    14 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • stephenw10S
      stephenw10 Netgate Administrator
      last edited by

      Between which hosts? How are you connecting?

      I 1 Reply Last reply Reply Quote 0
      • I
        infiniteX @stephenw10
        last edited by

        @stephenw10 I'm connecting to the WAN address using an IP alias, a virtual IP (VIP) specifically. Within my CentOS 7 machine, I've set up port openings for two services: port 39101 for the web server and port 1433 for the database server. Both services are hosted on the same CentOS machine.

        When attempting to access port 39101 for the web server, there are no issues, and I can successfully log in. However, when I attempt to access port 1433 for the database server, the connection is initially established but then abruptly closes. without encountering any errors.

        Upon examining the server logs, it becomes apparent that port 1433 is being opened but then subsequently closed. This behavior is unexpected and is hindering the intended communication between these ports.

        nat.png

        1 Reply Last reply Reply Quote 0
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          Check the states in Diag > States when you're trying to connect so see what the firewall is doing. If gets immediately rejected though it sounds like it could be forwarding correctly and the CentOS server is blocking it.

          I 1 Reply Last reply Reply Quote 0
          • I
            infiniteX @stephenw10
            last edited by

            @stephenw10 here is the result. I tried to spam the login. so we can capture the result

            6d65929a-de0a-4d55-94fc-1a0ff31502f0-image.png

            1 Reply Last reply Reply Quote 0
            • stephenw10S
              stephenw10 Netgate Administrator
              last edited by

              Those states are for 38101 and you said 39101 above. But I see no states at all for 1433.
              Is that traffic actually arriving at the WAN? Try adding logging to the pass rule on WAN. Or run pcap for port 1433 on WAN.

              I 1 Reply Last reply Reply Quote 0
              • I
                infiniteX @stephenw10
                last edited by

                @stephenw10 Sorry how to perform PCAP 1433 on WAN?

                1 Reply Last reply Reply Quote 0
                • stephenw10S
                  stephenw10 Netgate Administrator
                  last edited by

                  In Diag > Packet Capture like:

                  Screenshot from 2023-10-11 18-11-08.png

                  I 1 Reply Last reply Reply Quote 0
                  • I
                    infiniteX @stephenw10
                    last edited by

                    @stephenw10 Hi, base on the record. it didn't reach 1433 Port. it just stuck in 38101.

                    1 Reply Last reply Reply Quote 0
                    • stephenw10S
                      stephenw10 Netgate Administrator
                      last edited by

                      Well pfSense can't forward traffic that never arrives. 😉

                      Maybe that port is blocked by OVH or your ISP.

                      Steve

                      I 1 Reply Last reply Reply Quote 0
                      • I
                        infiniteX @stephenw10
                        last edited by

                        @stephenw10 Hello sir Steve. I got some error.

                        5e1b059b-c4a4-48d2-a293-d6e6bbcfcf92-image.png
                        I attempted to use SSH to access a CentOS 8 database server. Additionally, I used telnet to check port 38101. The connection was established, but it abruptly closed.

                        53fe7738-5270-4289-a0f3-0ee5019210d9-image.png

                        Port Forward Config

                        a73e1bed-758e-40c4-beff-f7e0751e96e8-image.png
                        Nat 1:1 Config and Outbound = Hybrid

                        2fcf087f-fefc-41a3-bba9-ced2740dd3ff-image.png
                        WAN Config

                        dfcb90c4-1b9c-4d29-82d9-bd1fe36d2973-image.png
                        NAT Config

                        1 Reply Last reply Reply Quote 0
                        • stephenw10S
                          stephenw10 Netgate Administrator
                          last edited by

                          What do the states show when you test that?

                          I assume that CentOS alias contains the correct two ports?

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.