NAT & Virtual IPs



  • Greetings,
    I am trying to setup virtual IPs in pfSense. I have been partially successful but believe I have run into a NAT issue.
    For example I have two networks, 10.0.0.1/24 is my external network provided by the ISP and 192.168.1.0/24 is my internal network. pfSense is setup on 192.168.1.1. I want to map 10.0.0.3 to 192.168.1.3 so I setup a virtual IP 10.0.3 on subnet mask /24. I then configured a 1:1 NAT with 10.0.0.3 as the External Subnet IP and the internal IP as 192.168.1.3, destination is any. I then created a Firewall rule to allow any to 192.168.1.3.
    I can ssh into the machine on 192.168.1.3 from a completely remote server using the external IP 10.0.0.3. However when I try to ssh to 10.0.0.3 from within the machine itself on 192.168.1.3 I get directed to pfSense on 192.168.1.1. So as a result applications that are bound to the external IP on the server aren't working correctly when it tries to talk to itself because it all gets direct to the pfSense system. I'm thinking I need some kind of outbound rule but I've tried to set one up but it didn't resolve my issue.
    Any help is appreciated.
    Thank you!
    Murphyslaw4267

    A correction: It appears that when connecting to a virtual IP from any IP within the internal network (192.168.1.0/24) it directs you to connect to the pfSense server.



  • I was able to solve by problem using the information provided here:: https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

    Thanks!