Forward specific external IP to Internal IP.
-
You can do this by making 1:1 mappings. First, go to Firewall, Virtual IPs and make a CARP entry for each external IP you have.
This should work with any type of VIP, not just CARP, and 1:1 isn't really needed either unless you want the outbound traffic from those servers to also appear to originate from the external IPs you are working with.
-
You can do this by making 1:1 mappings. First, go to Firewall, Virtual IPs and make a CARP entry for each external IP you have.
This should work with any type of VIP, not just CARP, and 1:1 isn't really needed either unless you want the outbound traffic from those servers to also appear to originate from the external IPs you are working with.
Indeed, I need traffic from those servers to appear to originate from their specific IP's :) Should have mentioned that - it's just how I got it working.
-
Hi All,
Many thanks for the response.
I have tried to add the VIP but when I add a CARP address I get the following error.
Sorry, we could not locate an interface with a matching subnet for 89.xx.1xx.72/32. Please add an ip in this subnet on a real interface.
Any ideas ?
-
CARP VIPs have to be in the same subnet as your WAN. If you have IPs in a different subnet, use Proxy ARP or "Other" type VIPs.
-
I have now added it in as Proxy Arp..
I have a NAT going from VIP to 192.168.1.2 but still brings me to 192.168.1.1
I have also tried setting the VIP as other..
Do I need to restart the PF..
-
It might help to see a screen capture of your port forward screen, someone might be able to spot an issue. A screen capture of the port forward editing screen for that rule wouldn't hurt, either.
-
JPEG of screen dump attatched..
-
What about the other view? (the list of port forwards)
-
port forward
![port forward.JPG](/public/imported_attachments/1/port forward.JPG)
![port forward.JPG_thumb](/public/imported_attachments/1/port forward.JPG_thumb) -
Did you create the according firewall rule?