Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Accessing hosted services from internal and from external

    NAT
    2
    2
    261
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      geminux last edited by

      Hello everyone,

      I have a small setup to host websites, mail, etc…

      pfsense (2.3.4) with one WAN (static public ip) and one LAN
      port forwarding (80+443) from wan to lan (pound server)
      pound server which dispatch request to the right backend
      a dns server on internet is resolving the hosted domains with the static wan address.

      => this is a pretty standard setup and everything is working well when someone tries to connect from external (internet)

      Here is a diagram with an example for web connections : -> attachment: from_external.png

      But when I want to access the same service from internal (lan), it no longer works. I guess that since connection come through LAN interface, it does not go through the port forwarding...

      Here is a diagram of what does not work : -> attachment: from_internal.png

      Does anyone know what I should do to make it work ?
      Thanks !



      1 Reply Last reply Reply Quote 0
      • V
        viragomann last edited by

        @geminux:

        But when I want to access the same service from internal (lan), it no longer works. I guess that since connection come through LAN interface, it does not go through the port forwarding…

        That's the point.

        Use an internal DNS and set up a host override.
        You may use DNS Resolver or DNS forwarder installed on pfSense found in Services menu.

        You may also activate NAT reflection + proxy in the NAT rule to resolve this.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy