Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem with NAT port web server. Please help me!!!

    Scheduled Pinned Locked Moved NAT
    6 Posts 3 Posters 667 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrfarm
      last edited by

      Hello,
      I used pfsense 2.3.5. I setup pfsense on PC with 5 Lan card.
      I setup 3 WAN ppoe on pfsense.
      wan1: 100Mb with 1 public IP
      Wan2: 60Mb
      Wan3: 75Mb witch 1 public IP
      I loadbalance 3 wan.
      Internal network I have 2 subnet.
      1 subnet for LAN (172.16.0.0/16)
      1 subnet for wifi (172.15.0.0/16)
      I have 1 web server in LAN (IP web server: 172.16.254.3)
      I want to public web server by NAT port forarding. I NAT via Wan1.
      when I NAT web server, user outside access my website is ok.
      But, user inside not ok. when I access my website in internal network, My website redirect to WebGUI pfsense.
      I can not access to my website.
      Please help me.
      Thanks

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Either enable a NAT Reflection mode or configure split DNS to resolve its domain to is LAN IP address.

        https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

        1 Reply Last reply Reply Quote 0
        • M
          mrfarm
          last edited by

          thanks so much for your reply.
          It is ok

          1 Reply Last reply Reply Quote 0
          • M
            mrfarm
            last edited by

            Sorry, let me ask you the question the other day
            I used pfsense 2.3.5. I setup pfsense on PC with 5 Lan card.
            I setup 3 WAN ppoe on pfsense.
            wan1: 100Mb with 1 public IP
            Wan2: 60Mb
            Wan3: 75Mb witch 1 public IP
            I loadbalance 3 wan.
            Internal network I have 2 subnet.
            1 subnet for LAN (172.16.0.0/16)
            1 subnet for WIFI (172.15.0.0/16)
            I have 1 web server in LAN (IP web server: 172.16.254.3)
            I want to public web server by NAT port forarding. I NAT via Wan1.
            when I NAT web server, user outside access my website is ok.
            But, user inside not ok. when I access my website in internal network, My website redirect to WebGUI pfsense.
            I can not access to my website.

            Then I followed this direction:
            Either enable a NAT Reflection mode or configure split DNS to resolve its domain to is LAN IP address.

            https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks

            I check that ok
            But today I found out that

            It's only ok when I access my website by WIFI interface.
            When I access my website by LAN interface not ok.

            WIFI interface: 172.15.0.0/16
            LAN interface: 172.16.0.0/16
            Local IP my website: 172.16.254.3

            Please help me.

            1 Reply Last reply Reply Quote 0
            • johnpozJ
              johnpoz LAYER 8 Global Moderator
              last edited by

              1 subnet for LAN (172.16.0.0/16)
              1 subnet for WIFI (172.15.0.0/16)

              Why would you use such large masks??  Makes no sense to use such a large mask that includes 65K possible address.  Do you have that many hosts that might connect to those networks?

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 24.11 | Lab VMs 2.8, 24.11

              1 Reply Last reply Reply Quote 0
              • M
                mrfarm
                last edited by

                Thanks you.
                everything was ok when I switch to mode NAT + Proxy
                Originally I chose the mode Pure NAT

                Thank so much

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.