проброс портов в pfsense через второй внешний ip
-
запускай tcpdump, сразу всё ясно станет.
-
запустил, а он когда нибудь остановиться?
-
нет, сам не остановится, Ctrl+C
запускай так```
tcpdump -ni<имя WAN-интерфейса> port 25и пробуй стучаться на WAN на порт 25, если видешь пакеты, то нажимай Ctrl+C и запускай
tcpdump -ni<имя LAN-интерфейса> port 25
опять пробуй стучаться, посмотрим, пытается пробрасывать или нет.
-
$ tcpdump
16:38:42.442929 IP 10.0.0.0 > ALL-SYSTEMS.MCAST.NET: igmp query v3 [max resp time 1s]
16:38:43.437708 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:43.734123 IP AAnnecy-256-1-11-1.w90-10.abo.wanadoo.fr.netbios-dgm > AAnnecy-256-1-11-bdcst.w90-10.abo.wanadoo.fr.netbios-dgm: NBT UDP PACKET(138)
16:38:45.438107 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:47.438258 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:49.439165 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:49.444184 IP 10.0.0.0 > ALL-SYSTEMS.MCAST.NET: igmp query v3 [max resp time 1s]
16:38:51.439321 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:53.439738 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:55.440130 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:57.440529 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:38:59.441199 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:01.441590 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:03.441994 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:05.442163 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:07.442556 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:09.443213 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:11.443618 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:13.444014 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:15.444153 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:17.444574 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:19.445238 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:21.445629 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:23.445794 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:24.803539 IP6 fe80::21f:29ff:fe1b:449b.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
16:39:25.446218 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:27.446596 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:29.448501 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:31.447657 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:33.447798 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:35.448219 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:37.448609 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:39.449289 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:41.449671 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:43.449824 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:45.450230 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:47.450636 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:49.451306 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:51.451446 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:53.451850 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:55.452246 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:57.452655 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:39:59.453060 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:01.453463 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:03.453861 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:05.454023 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:07.200616 IP 192.168.40.227.netbios-dgm > 192.168.40.255.netbios-dgm: NBT UDP PACKET(138)
16:40:07.232062 IP 192.168.40.227.netbios-dgm > 192.168.40.255.netbios-dgm: NBT UDP PACKET(138)
16:40:07.454418 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:09.455087 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:11.455473 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:13.455893 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:15.456283 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:16.887416 IP 10.10.22.56.netbios-dgm > 10.255.255.255.netbios-dgm: NBT UDP PACKET(138)
16:40:17.456689 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:19.457344 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:21.457501 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:23.457901 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:25.458342 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:27.458471 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:29.459131 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:31.459521 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:33.459710 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:35.460073 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:37.460499 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:39.460888 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:41.461286 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:43.461700 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:45.461845 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:47.462249 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:49.462918 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:51.463306 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:53.463459 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:55.463878 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:57.464271 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:40:59.464680 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:01.465081 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:03.465483 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:05.465641 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:07.466043 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:09.466696 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:11.467117 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:13.467500 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:15.467906 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:17.468057 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:19.468722 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:21.469124 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:23.469522 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:25.024924 IP6 fe80::21f:29ff:fe1b:449b.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
16:41:25.469707 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:27.470174 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:29.470494 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:31.470915 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:33.471302 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:35.471784 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:37.471861 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:39.472538 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:41.472921 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:42.492123 IP 10.10.22.56.netbios-dgm > 10.255.255.255.netbios-dgm: NBT UDP PACKET(138)
16:41:43.473339 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:45.473476 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:47.473896 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:49.474288 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:51.474771 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:53.475116 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:55.475489 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:57.475642 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:41:59.476388 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:01.476726 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:03.477111 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:05.477277 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:07.477670 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:09.478320 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:11.478471 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:13.478880 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:15.479281 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:17.479689 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:19.480094 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:21.480491 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:23.480896 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:25.481050 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:27.481463 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:29.482367 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:31.482513 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:33.482916 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:35.483320 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:37.483717 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:39.484380 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:41.484781 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:43.484936 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:45.485341 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:47.485745 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:49.486399 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:51.486553 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:53.486958 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:55.487360 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:57.487775 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:42:59.488423 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:01.488577 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:03.488975 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:05.489379 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:07.489782 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:09.490192 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:11.490608 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:13.490996 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:15.491404 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:17.491801 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:19.492211 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:21.492609 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:23.492771 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:25.246304 IP6 fe80::21f:29ff:fe1b:449b.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
16:43:25.493178 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:27.493570 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:29.494231 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:31.494636 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:33.494783 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:35.495197 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:37.495603 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd:d7.8001, length 43
16:43:39.496249 STP 802.1d, Config, Flags [none], bridge-id 8000.00:22:15:31:bd: -
аааа пробую
-
с CTRL+C не получится запускаю с web интерфейса, но не в этом суть
и по WAN и по OPT пробую принять почту в логах по нулям, а теперь pfSense вообще повис, из за неостановившихся tcpdump'ов, буду завтра пробовать.
-
не, это в терминале лучше делать… как завтра? без почты сидеть будешь?
-
не, это в терминале лучше делать… как завтра? без почты сидеть будешь?
а как, я пытаюсь залогиниться он пробует открыться и висит, я не на работе, только перезагружать
-
м-да… сурово. Значит у тебя нет доступа к нему по ssh... -(
-
м-да… сурово. Значит у тебя нет доступа к нему по ssh... -(
к pfSense как раз есть, я говорю висит, а к ESXI нет, не стал открывать
-
Спасибо что помог, завтра попробую и отпишусь
-
Пробую отправить почту с gmail.com на рабочий ящик
-
пробую пробросить 80 по WAN пакеты идут, все ок.
-
я в tcpdump не вижу даже попыток на WAN интерфейсе подключиться на порт 25. Попробуй с внешней машины telnet <твой внешний IP> 25 и посмотри приходят ли пакеты
-
-
Не… надо с другой машины, подключенной к инету на твою стучаться и в то же время смотреть tcpdump'ом пакеты.
Может ты мне кинешь в личку доступ к твоему pfSense'у и я быстренько посмотрю что к чему? -
скинул