Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port forward issue

    Scheduled Pinned Locked Moved NAT
    21 Posts 6 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      DKentoy
      last edited by DKentoy

      @andresct46 said in Port forward issue:

      @valnurat

      In destination, select "single host or Aliases" and write 192.168.1.160.

      The rest is the same.

      Didn't changed anything, sorry.

      @johnpoz said in Port forward issue:

      followed the guide and what did you find? Since your port forward would be working if you followed the guide and didn't find anything.

      I changed my setting by using Method 1: NAT Reflection and I looked into the logfiles, but I see a message "Default deny rule IP4
      0_1535058605984_PF1.JPG

      0_1535058615100_FR2.JPG 0_1535058627610_FR1.JPG 0_1535058637457_FR2.JPG 0_1535058643965_FireWallLog.JPG

      D 1 Reply Last reply Reply Quote 0
      • D
        DKentoy @DKentoy
        last edited by

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by johnpoz

          What are those firewall logs suppose to show have anything to do with your port forward of UDP? Those are RA blocks on your lan by the default deny... Has ZERO to do with your port forward..

          Can you post up your port forward tab and and your wan tab - exactly like I did...

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          D 1 Reply Last reply Reply Quote 0
          • D
            DKentoy @johnpoz
            last edited by

            @johnpoz said in Port forward issue:

            What are those firewall logs suppose to show have anything to do with your port forward of UDP? Those are RA blocks on your lan by the default deny... Has ZERO to do with your port forward..

            Can you post up your port forward tab and and your wan tab - exactly like I did...

            It was just part of the troubleshooting - well never mind.

            0_1535226808015_U1.JPG 0_1535226818551_U2.JPG

            1 Reply Last reply Reply Quote 0
            • GrimsonG
              Grimson Banned
              last edited by

              So it's point number 1 on the troubleshooting page, you didn't follow the instructions here: https://www.netgate.com/docs/pfsense/nat/forwarding-ports-with-pfsense.html (Hint: Your Dest. Address is wrong). Place a big "RTFM" on your desk.

              1 Reply Last reply Reply Quote 0
              • D
                DKentoy
                last edited by

                Yes, I did followed the instructions, but what do you mean by point number 1? If it my destination that is the problem what should it be then? Because maybe I don't understand it and that the reason why I guess there is this forum to get some help, right?

                1 Reply Last reply Reply Quote 0
                • johnpozJ
                  johnpoz LAYER 8 Global Moderator
                  last edited by johnpoz

                  That is NEVER going to work... Your dest address when you do your port forward would be the WAN ADDRESS... This is the default when you click on port forward..

                  0_1535237388152_portforward.png

                  Its like you have to work at messing up port forwards ;) Been here like 10 years and I don't think I have ever come across a port forward issue what was not PEBKAC...

                  When you click the add button, your typical setup will be like 2 things you have to put in, the port and the IP you want to forward too.. Its like you on purpose have to try to F it up ;)

                  These are the only things your normal port forward has to edit. And the first 1 is maybe.. Since majority will be tcp.. So while its 3 boxes - 2 most of the time going to be drop down on the common protocol

                  0_1535237716326_typicalportforward.png

                  I am more than happy to help - and no offense meant but this gets so OLD... its always the same thing - pages of pulling teeth to get a simple 2 second screenshot and then your problem will be obvious to pretty much anyone here.

                  An intelligent man is sometimes forced to be drunk to spend time with his fools
                  If you get confused: Listen to the Music Play
                  Please don't Chat/PM me for help, unless mod related
                  SG-4860 24.11 | Lab VMs 2.8, 24.11

                  1 Reply Last reply Reply Quote 0
                  • D
                    DKentoy
                    last edited by

                    I'm not trying to be a fool here, but is this not what I posted in the first link in my post#1?

                    And if you see in post #4 I was recommended to change my Destination: from WAN address to Single host or alias by Mr. andresCT46

                    1 Reply Last reply Reply Quote 0
                    • johnpozJ
                      johnpoz LAYER 8 Global Moderator
                      last edited by johnpoz

                      And what did I say about that external link, in my first post ;)

                      How come it shows wan address in that image, but in your listing of your actual rules it shows the 192.168.x.x address

                      Post up the tab so can see info!! Not while the user is creating/editing the rule.. You have no idea what they do in the process.

                      Sorry - I see that, yeah sorry its a forum.. Sometimes idiots chime in with bad advice ;) Most of the time they are trying to help - but its the blind leading the blind ;)

                      And again all the info needed to troubleshoot why your port forward isn't working is listed in the troubleshoot guide.. Post up your tabs.. If they are correct, then simple packet capture to figure out where its failing - traffic not getting to pfsense wan, where you send not answering, etc.

                      An intelligent man is sometimes forced to be drunk to spend time with his fools
                      If you get confused: Listen to the Music Play
                      Please don't Chat/PM me for help, unless mod related
                      SG-4860 24.11 | Lab VMs 2.8, 24.11

                      D 1 Reply Last reply Reply Quote 0
                      • D
                        DKentoy @johnpoz
                        last edited by

                        @johnpoz said in Port forward issue:

                        And what did I say about that external link, in my first post ;)

                        You said: How hard can it be to add a screenshot. ☺
                        but I thought you looked at it anyway.

                        How come it shows wan address in that image, but in your listing of your actual rules it shows the 192.168.x.x address

                        That I can't explain. I didn't created the rule. I think the rule is being created when I create the NAT.

                        D 1 Reply Last reply Reply Quote 0
                        • D
                          DKentoy @DKentoy
                          last edited by

                          I haven't solved my issues yet, but I have been told that I can't do a port forwarding if I don't have a static IP. Is that true?

                          johnpozJ 1 Reply Last reply Reply Quote 0
                          • DerelictD
                            Derelict LAYER 8 Netgate
                            last edited by

                            @valnurat said in Port forward issue:

                            I haven't solved my issues yet, but I have been told that I can't do a port forwarding if I don't have a static IP. Is that true?

                            Not true at all. Use WAN address as the port forward Destination Address.

                            Chattanooga, Tennessee, USA
                            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                            Do Not Chat For Help! NO_WAN_EGRESS(TM)

                            1 Reply Last reply Reply Quote 0
                            • johnpozJ
                              johnpoz LAYER 8 Global Moderator @DKentoy
                              last edited by

                              @valnurat said in Port forward issue:

                              I have been told that I can't do a port forwarding if I don't have a static IP. Is that true?

                              Where exactly are you getting this nonsense??

                              An intelligent man is sometimes forced to be drunk to spend time with his fools
                              If you get confused: Listen to the Music Play
                              Please don't Chat/PM me for help, unless mod related
                              SG-4860 24.11 | Lab VMs 2.8, 24.11

                              D 1 Reply Last reply Reply Quote 0
                              • D
                                DKentoy @johnpoz
                                last edited by

                                @johnpoz said in Port forward issue:

                                @valnurat said in Port forward issue:

                                I have been told that I can't do a port forwarding if I don't have a static IP. Is that true?

                                Where exactly are you getting this nonsense??

                                In our community where I live.

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.