Hello everyone. First off, I am not sure if this was the right section of the forum to post and I am sorry if that is the case. I am brand new to pfSense. I have wanted to setup my own pfsense box for a while but I have Verizon FIOS and the connection was coming in through Coax. Today I had my service upgraded to 150mbps down and up and because of this the verizon tech ran a cat5e line from the ONT to where my router is. Now that I have the ethernet handling data I decided to go with pfsense. The box I am using for it is https://www.zotac.com/us/product/mini_pcs/zbox-ci323-nano#spec. I have 16gb of ddr3 ram and a sandisk 120gb installed in that.
Now I was able to set everything up pretty easily. All the cable boxes are working with all the internet features (guide, VoD, etc.) and of course internet access is working fine. I started adding port forwarding rules for certain services inside my network such as Plex Media Server. One thing i have in my network is a security camera system. I have 6 cameras hooked up to a dvr PC. That PC is communicating on 192.168.1.25. Now I run a homelab also so DHCP and DNS are handled by my Server 2012 DC. I added all the port forwarding rules (the ports it needs are 4550, 5550, 8866, 56000, 5511, and 8080) and I can access them from outside my network. However on my old verizon router, I was also able to access them even if I was connected to the wifi in my internal network. That is currently not working. I am pretty sure the reason why is because pfsense is blocking all private networks on the WAN interface (which I want it to do). Is there any way to get this working in pfsense? I would like to be able access the cameras even while I am in my internal network. I tried to give all the information I could but if there is any other information you guys needs let me know and I will post it. I appreciate any help you can give. Thank you.
Configure split DNS to resolve your external FQDNs to your LAN IP addresses.
Thank you for your reply. I just wanted to report back in case others in my situation have an issue similar to this. So I did look at that pfsense document KOM posted but it turned out that pfsense was not even what I had to configure. Since I run Server 2012 R2 domain in my house my entire LAN has its DHCP & DNS services handled through my AD DC. The way my cctv thing works is it has a program on it that does dynamic dns. It gives me a url that just maps to my public ip on a certain port and the program keeps it updated in case my public ip changes. So what I needed to do to fix it was create another forward lookup zone in AD DNS for the public domain of that url. Then I just created a host (A) record for the exact url and pointed it to the IP of the dvr box inside my network. So when inside my network my devices, when browsing to that url, will just communicate through the LAN to the DVR box and when outside my network it will come in through my firewall for which I have port forwarding rules setup. Thanks again for the reply KOM.