HOW TO NAT 1:1, BUT SERVER DO NOT POINT TO PFSENSE'S GATEWAY?
I have a server, was public to the internet over Checkpoint Firewall. (Server point gateway to Checkpoint Lan Interface)
I setup a new Pfsense firewall now, and I want to public that server over pfsense, but can not change default gateway (currently point to Checkpoint Firewall)
IP WAN: 192.168.1.2
IP LAN: 10.10.10.1
Gateway: 10.10.10.1 (CheckPoint LAN interface)
IP WAN: 192.168.2.2
IP LAN: 10.10.10.11
(Sorry for my English)
You'll have to source NAT it in that case so the server sees it coming from the LAN IP, not the original IP. Firewall>NAT, Outbound. Hybrid mode, add a rule to NAT traffic on interface LAN, source any, destination IP of the server.
This is my config, IT's WORK !
#1/ FIREWALL->NAT 1:1
#2/ FIREWALL->NAT OUTBOUND: