Port forwarding between LAN and opt1

allen_armstrong

Hi,

Is it possible to forward ports between the two internal lan interfaces?    Here is what I am doing:

WAN (Public IP Address)
|
Pfsense 2.0.1-RELEASE (i386) built on Mon Dec 12 17:53:52 EST 2011
|                                 |
Lan                           Opt1
10.0.0.x /17          192.168.4.x /24

Lan/OPT1/WAN are all vlanned.   Nat is working on both Lan and OPT1.   What I would like to do is take all port 80 traffic from the Lan interface and forward it to 192.168.4.2:80 or 3129 as I have transparent proxy setup run squid.  Is this do able?   If so how?   Also can I make it so that the address on the 10.0.0.x /17 side is not translated?

I am running pfsense on PV box and I have pretty nice server run squid and a few other services that is why I don't use the package the come with pfsense.

Thanks

Allen

allen_armstrong

After viewing the firewall log it says that:

Blocked LAN 10.0.47.175:4757 192.168.4.1:80 TCP:R

@1 scrub in on bge0_vlan5 all fragment reassemble
@1 block drop in log all label "Default deny rule"

Interestingly enough if I put my clients web browser to 192.168.4.1 and us port 80 as the proxy port it works.

allen_armstrong

This is closed.  It is routing issue.  Learn't about my old friend TCPdump again.  :)