Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Barrier Reef Setup and NAT

    NAT
    2
    2
    1561
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jensdanne last edited by

      Ok, this is my first post and I will explain, what is going on as simply as I can.
      We have a so called "barrier-reef" firewall situation.

      One FW sits in front of our DMZ and is connected to its own DSL Modem.
      Behind the DMZ there is the pfsense FW connected to it are 2 Interfaces, one the internal workstations and the other one with our internal servers, plus one WAN connection.

      As one of our internal servers is a Notes machine, people want to connect to it via Web Interface on Port 443.

      DNS says, notes.company.net > 195.122.123.124 (public IP), which is the pfsense interface of the DMZ and which is allowed in the first FW.

      I now need to be able to serv port 443 from 192.168.16.166 which is the internal IP of the notes machine to people coming in from the DMZ.

      I am sure i need to do some outbound NATting, but I can't just figure this out.

      I give you the setup again:

      WAN
                                                |
      WAN >> FW >> DMZ >> FW  –- workstations
                                                |  --- internal servers

      Help is really appreciated...
      ???

      1 Reply Last reply Reply Quote 0
      • N
        nocer last edited by

        Hope this helps: http://forum.pfsense.org/index.php/topic,7001.0.html

        And there are several posts asking the same in this this NAT forum.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy