• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

NAT for DMZ not working

Scheduled Pinned Locked Moved NAT
6 Posts 3 Posters 2.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    stokiemike
    last edited by Dec 27, 2012, 3:03 PM

    Hi,

    Recently my hardware Firewall failed, until the replacement comes I need to get PfSense working, but I am failing. I have three physical connections as follows:
    •LAN
    •DMZ (Opt1)
    •WAN
    I am trying to get Internet connection between the DMZ and WAN using the NAT but cannot get any DMZ server to recieve the Internet. To start with I have fully opened the Rules to allow all traffic (once I have the internet working I will apply the original rules). I can access LAN to DMZ no problem.
    I have provided a NAT:outbound rules as follows:
    •Interface: WAN
    •Source & source port: *
    •Destination & dest port: *
    •NAT address: *
    Note that PfSense can access the Internet fine and performs DNS lookups and pings to google. From the DMZ a trace route to google IP also fails

    Any suggestions?

    1 Reply Last reply Reply Quote 0
    • D
      dimkyson
      last edited by Dec 27, 2012, 5:21 PM

      Did you try the Automatic outbound NAT rule generation?

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by Dec 27, 2012, 10:04 PM

        If you are set to manual outbound nat, you will need to add the DMZ network to list. I don't think an any is going to work here. There should be a rule for LAN and one for DMZ. Setting the source as something like DMZnet or LANnet or 10.0.0.0/24 and such.

        1 Reply Last reply Reply Quote 0
        • S
          stokiemike
          last edited by Dec 28, 2012, 8:43 AM

          Have tried the automatic NAT, but no luck

          1 Reply Last reply Reply Quote 0
          • S
            stokiemike
            last edited by Dec 28, 2012, 10:52 AM

            Thanks podilarius for your comments but I have tried your suggestions with no luck

            1 Reply Last reply Reply Quote 0
            • P
              podilarius
              last edited by Jan 1, 2013, 6:10 AM

              Did you setup an allow rule in the OPT1 firewall settings? By default no rule is added and will thus block all connections.

              1 Reply Last reply Reply Quote 0
              6 out of 6
              • First post
                6/6
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                This community forum collects and processes your personal information.
                consent.not_received