Letting something in through WAN



  • Hi guys, I know enough to get most of pfSence working, but I think I overstepped myself with this overly simple problem.
    I have an ATT Uverse router/modem that gives Internet access to devices that connect through my set top boxes in a couple of bedrooms, I also have pfSence hooked up to that router and my entire network exists safely on the other side of my pfSence machine.
    What I'd like to do is plug in a device, right now I'm looking at an Xbox 360, into one of these set top boxes and have it be able to connect to my media center that exists on the pfSence side.

    I thought I just need to add a rule to the firewall, and this would be relatively simple, but I've failed so far, so I'm hoping this post isn't a complete jumbled mess and someone can help me out.

    Cheers guys!



  • Look at Port Forwarding, under the NAT menu option.



  • Can it be setup so it only allows specific external address' into the internal network? Doesn't NAT let the entire internet in?



  • @madelk:

    Can it be setup so it only allows specific external address' into the internal network? Doesn't NAT let the entire internet in?

    NAT and firewall rules are completely separate. Check "auto add firewall rule", then go to your WAN firewall rules and edit that rule. You can restrict however you want.



  • I can't find anything labeled "auto add firewall rule".  :-\ pfSence is still rather new to me.
    Can I just allow the network 192.168.1.255 into my internal network 192.168.2.255 through the WAN port somehow?



  • Oh, you actually want to route that traffic. That'll work, just add rules on WAN allowing it.



  • So do I go into
    Firewall / Rules / Wan
    Select pass and a network of 192.168.1.255?


Log in to reply