How to do this special NAT?
-
I have 2 pfsense running, and they are using different WAN but same LAN. Their LAN ip is 192.168.1.1 and 192.168.1.2
Because one WAN is unstable (LAN ip: 192.168.1.2), the users are using this pfsense cause IM software reconnect always.
Now I want to make a rulle for those users, all gateway 192.168.1.2 clients' IM connection NAT to 192.168.1.1 and outbound.
It is like this,clients_A <–--- MSN,other IM ---( LAN netif )---> 192.168.1.2 <----( LAN netif )-----> 192.168.1.1 <-----( WAN netif )-----> Internet
clients_A <----- all other traffic --( LAN netif )----> 192.168.1.2 <---( WAN netif )------> Internet
clients_B <----- all traffic ---( LAN netif )---> 192.168.1.1 <----( WAN netif )-----> InternetIs it possible to make this rule? How to do it? Thanks.
-
Why are your running 2 pfSense for this setup? You rather want a multiwan/loadbalancing/policybasedrouting setup.
See http://wiki.pfsense.com/wikka.php?wakka=OutgoingLoadBalancing for how to set this up with a single pfSense.
-
Because it is two adsl. And I can't use modem to pppoe.
-
Use a modemrouter with dmz IP for the second wan. I had a similiar setup at our office for some weeks before we switched the second line to static IP. Worked great.
-
The modem sux forever while running in route mode. So i can't use modemrouter. sigh.
Can you help me about this special NAT?Or is it possible to create custom pf rules, and auto add after each modify by WebConfig? So I can make a port redirect like transparent proxy.
-
I don't see the point with the sucking modem in router mode. Set the pfSense WAN IP behind it as DMZ IP (most modemrouters have this function). Then you can handle everything besides the pppoe dialin at the pfSense. Some modemrouter even can run in so called halfbridge mode where they only do the pppoe and are still transparent.
-
My modemrouter was crash while connections more than 200. But work well in client pppoe dial up.