WAN Access from LAN

arrmo

Hi,

This may seem like a dumb thing to do (and perhaps it is …  ;D) - but I want to be able to access some LAN services (like HTTP) ... from the same hostname, whether inside or outside my network. So for mobile devices (phone, laptop, tablet, etc.) ... I want to go to (for example), www.mysite.com, and have it work inside or outside the network. Hope that makes sense.

So from outside the network, going to www.mysite.com works, as NAT is enabled, and it port forwards to the internal site. But if I'm coming from the LAN, also to www.mysite.com (or even the IP address of the WAN port of the pfSense box) - I get the login screen for pfSense. That's fine when I access the LAN side of the box, but the WAN side should port forward ... no?

Any thoughts how to make this work?

Thanks!

KOM

https://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

Use split DNS.  Have your local DNS (pfSense or other) supply local LAN IP addresses when the client requests a lookup of the FQDNs you're concerned about.

arrmo

Yep, that works - I had tried it … but I'm running Load Balancing (from WAN to LAN), would like to just keep that in place. Is it possible? If not I can drop back to what you mention.

Thanks!

arrmo

Hi,

Actually, a bit of poking around - it seems that round-robin DNS may be just what I'm after. I think (but could be wrong!) that Unbound supports this … does anyone know for sure?

Thanks!