Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pass-through MAC vs NAT reflection

    Scheduled Pinned Locked Moved
    Captive Portal
    1
    1
    2.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vatson
      last edited by

      Hello!

      We are running 1.2.3 with two internal networks. For this post let's call them OFFICE and GUEST. Captive portal is enabled on GUEST network.

      In OFFICE network there are some servers, for which port forwarding is defined to make them available from the Internet. NAT Reflection is also enabled, so machines in both OFFICE and GUEST networks are able to access the servers.

      However, there is one exception. If a machine has it's MAC address defined in pass-through MAC section of captive portal, it cannot access any of the servers in the OFFICE network. As soon as I remove the pass-through MAC, the machine is able to access these servers (after going through the portal page). Looks like NAT reflection is not effective in this case.

      The workaround I've found is to define static mappings for these MAC addresses in DHCP server and then allow these IP addresses in Captive Portal, but migrating to this solution involves a lot of manual labour. Can anyone propose a better solution?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post