Just pass thru the source IP address vs gateway/vip
-
Hello, reaching out to see if I could get some guidance/assistance on how to ideal setup pfsense to just pass thru the source IP address vs NAT'ing its VIP/interface/gateway address and the destination seeing that address. Below is a rough example of what I'm after. I understand that this could be done with outbound NAT, if I'm not mistaken, but like to get confirmation this is the ideal way to go and/or if there was some sort of configuration option built into pfsense already.Example 1: sourceip(10.1.1.1) in VLAN 10 -> pfsense has a static route to route this specific gateway (10.10.10.1) -> destiantionip (10.10.20.1) in VLAN 20. Issue: ``` Destination host (10.10.20.1) only see's 10.10.10.1 request but I need it to see 10.1.1.1Apologize ahead of time for asking a rudimentary use case. Just like to get some insight on how the community tackles such use cases.
-
That only happens because there is an outbound NAT rule translating it. You can simply remove that rule and it will not NAT it.
You can put outbound NAT in manual mode and remove any rules you don't need.
If it's just one host you can put it in hybrid mode and add a 'do not nat' rule that matches just that host.
Steve
-
@stephenw10 Thank you for the quick response and confirmation.
