Firewall Rules do not seem to work, cannot access web1 (opt1) from LAN side
-
Hi,
I have a strange firewall issue.
I have 4 public IP’s that are mapped to 4 internal IP’s.
Once of the WEB servers is on the public IP - that is mapped to an internal IP and has it’s own NIC (WEB1).
I can get to the web pages from any external source – So I know the 1:1 mapping are working, and the firewall rules are working as well.The issue is that I cannot get to it from my LAN (my LAN and WEB are on different NICs [LAN & WEB1] and different IP address ranges [ 192.x.x.x & 10.10.x.x].)
Firewall rules:
WAN side:
Any , port 80 to WEB1( 10.10.10.10) port 80
Any , Port 443 to WEB1 ( 10.10.10.10) port 443
LAN Net, Port ANY to WEB1 Net Port AnyLAN Side ( I think this is not really required but added):
Lan Net port any to WEB1 Net Port Any
WEB1 Side ( I think this is not really required but added):
Lan Net port any to WEB1 Net Port AnyIf more details are required please let me know and I can post.
Thanks
George -
Please post screen shots of your firewall rules for LAN and OPT1. Also are you using the internal IP address or the external?
-
There is nothing in the logs either.
As I said I can get to it from the outside but not from with in the LAN site of it.I am using internal IP address.
See attached photos of the firewall rules for the required interfaces:
-
This is a question that is literally asked every day here.
https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks
-
Hi Thanks to all for the pinters.,
Resolved, but the link did not really help.
The real issues this time was with the DNS setting on the client - they were hard coded and not being picked up from the DHCP servers.
Reconfigured NIC and ALL worked well.Next time return to basics…. My BAD - :-[
Regards
George