Access to internet LAN through external domain address how?
-
So it seems something is not right in some rules or config.
Lets say I have a webserver hosted on my LAN at 192.168.0.100
I have a domain name pointing to my WAN, like www.hello.com -> 80.5.2.1 external WAN IP
If I'm on my internal network, and try to access www.hello.com, nothing happens, but if I directly access it through 192.168.0.100, it works.
If I'm on external network like public hotspot, www.hello.com works fine as well.
Is there some firewall or routing/NAT rule to allow access via domain name/address to LAN address?
-
Is domain name resolving to the expected address?
Is NAT reflection enabled?If so this could be the trouble.
NAT Reflection and HSTS Documentation
https://forum.pfsense.org/index.php?topic=118761.0 -
Hmm it works when nat reflection is enabled but then external access is very slow…
-
If you only have a few external hosts, you're better off disabling NAT Reflection and then setting a couple of DNS overrides so that your external domains resolve to their internal IP addresses.
-
Yes it seems that's the best way, the only thing is I would need to add subdomains to hello.com since I have different servers running at different local internal IP
So something like
webserver - web.hello.com
ftp - ftp.hello.com
plex - plex.hello.comThen override DNS for each of those to local IP.
Correct?
-
Depending on what you're using for internal DNS, you would either create a new zone for your external domain and then just add some A records to it that point to your internal servers local addresses. If you're using pfSense then you can just add a couple of host overrides.