[SOLVED] Windows IIS Webserver with Pfsense = Potential Rebind Attack

  • Sorry if I post this in the wrong section.

    I have a Pfsense 2.3.3-RELESE-P1
    Virtual IP Adress setup with IP Alias
    NAT 1:1 mapping
    Dns Forwarder enabled
    A test webb server with two subdomains test1.example.org and test2.example.org

    Which results in Potential Rebind Attack if I try to access any of the sites

    I have tried both suggestions in this faq; https://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

    If I enabled NAT reflektion, the sites become inaccessible

    If I map split dns - the end result is the same - Potential Rebind Attack

    What am I doing wrong?
    Thanks in advance!


    I have another network on the Pfsense box which I used to test the webserver and my firewall rules is most likly the problem since it seems to resolv internal rather then go externaly. I have replaced this network with another router and now it works.
    So stupid of me but "learning by doing".


Log in to reply