Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pure NAT is not working on 2.3.3

    Scheduled Pinned Locked Moved NAT
    2 Posts 1 Posters 868 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sheshman Banned
      last edited by

      PfSense : 2.3.3-RELEASE-p1

      LAN : 192.168.1.1

      WAN-1 : 192.168.10.1 (Fiber) - WAN-1 INTERFACE : 192.168.10.2

      WAN-2 : 192.168.20.1 (3G Backup - Failover) - WAN-2 INTERFACE : 192.168.20.2

      WAN IP : 212.152.197.110 (due to security issues not my real wan ip)

      Forwarded Ports : 8089-995-993-587-110-143-1723 ->192.168.10.2

      My pc at my home connects to my company's server through above ports without any problem, but LAN clients in company can not access to WAn ip from LAN, if client calls http://192.168.1.230:8089/webmail/ it can accesss,but if client calls http://212.152.192.110:8089/webmail/ browser says unreachable (it takes so much time to respond), when i call same address (http://212.152.192.110:8089/webmail/) from pc at my home it reaches without any problem,so it means port forwarding works fine and only LAN clients in company can't reach my WAN IP.

      So i've followed this article :```
      https://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

      
      System > Advanced, Firewall/NAT->Pure NAT:Selected-> Enable NAT Reflection for 1:1 NAT:Checked->Enable automatic outbound NAT for Reflection:Checked->SAVE
      
      After those steps nothing has changed clients still can not access to WAN ip from LAN, so i've tried to add 1:1 rule via Firewall, i've added 1:1 rule which allows 212.152.197.110->192.168.1.230 that didn't help too.
      
      I was suspicous about my router does that, excluded router from pfsense,resetted and connected through my laptop only, installed xampp to my laptop and forwarded necessary port to my laptop from router,when i called http://212.152.192.110:8089/webmail/ i've accessed my WAN ip from my LAN it means my router is not blocking access to WAn from LAN,so it seems like somehow i'm missing something on Pfsense configuration and it cause PURE NAT fails.
      
      Any ideas ?
      1 Reply Last reply Reply Quote 0
      • S
        sheshman Banned
        last edited by

        anyone ?

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.