Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is it possible to port forward port 80 traffic that is sent to the wan interface

    General pfSense Questions
    3
    7
    569
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrkool
      last edited by

      right now i have a port forward rule but it is not working. if i try to go to my public ip address from the LAN it takes me to the pfsense and gives me an error that something funny might be going on. If i try to access my external ip via port 80 it keeps churning and doesn't go any where.

      So is it possible to run the 80 redirecting to 443 on the LAN interface as i will never need to access pfsense from outside.

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        https://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks
        I suggest you set up "Method2: split DNS" since it is the cleaner solution to your problem.

        As for the port to run the webinterface on:
        System –> Advanced
        allows you to configure which protocol and which port to run the webinterface.
        Best is to set it to https.
        If you need port 443 to be forwarded, set the webinterface to something else as well (8443 is a port i often see in such a scenario).

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          If you must use NAT reflection you should probably set the web interface on pfSense to HTTPS and a port other than 443 (like 8443) and check WebGUI redirect to disable that.

          All of this is under System > Advanced

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • M
            mrkool
            last edited by

            I don’t much care about accessing my website from the LAN which both the split DNS and NAT refers to. I just want the site to be public accessible but that is not working. So if any one connects to the WAN interface on port 80 I want them to be redirected to the internal web server on port 80 so a simple port forward should work but it is not.

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate
              last edited by

              Are you testing from outside or inside? If from outside you are testing the port forward. If testing from inside you are testing NAT reflection regardless of what you are or are not concerned about.

              Post your port forward(s) and the associated firewall rule(s).

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • M
                mrkool
                last edited by

                Nvm It worked from outside dunno wot the issue was though but it works now.

                1 Reply Last reply Reply Quote 0
                • DerelictD
                  Derelict LAYER 8 Netgate
                  last edited by

                  Yeah. That's item #6 here:

                  https://doc.pfsense.org/index.php/Port_Forward_Troubleshooting

                  The port 80 redirect to the web gui works completely differently for NAT reflection than with a port forward.

                  Chattanooga, Tennessee, USA
                  A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                  DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.