Rules for specific Virtual IP
-
Hello to all,
I am trying to setup a rule (open a port) to LAN IP, but I want this rule to apply only to a specific Virtual IP. I have multiple VIPs assigned from my provider and Firewall: NAT: 1:1 for some of them to Internal LAN. Is there any way to do this ?
Thanks
-
I'm not sure I understand you. Yes, you can have a public IP from your ISP as a Virtual IP managed by pfSense, and use NAT to allow a LAN server to receive inbound traffic from your WAN to that virtual IP. I wouldn't use 1:1 NAT unless you really need that much exposure. A simple NAT and firewall rule is enough.
https://doc.pfsense.org/index.php/What_are_Virtual_IP_Addresses
https://doc.pfsense.org/index.php/How_can_I_forward_ports_with_pfSense