Port forwarding from PUBLIC IP to another PUBLIC IP
Please, Im new in firewalling and pfsense , but i need to port forwarding one port from public ip to same port in another ip. I'd like to know if i need to make a firewall rule in pfsense (where) . Is there a step by step guide anywhere ? Thanks in advance guys
JKnott last edited by
Perhaps I'm missing something, but if you have 2 public IPs, why do you have to port forward?
Oh Im sorry. I dont write correctly. I need to port forward from one ip in one server (datacenter A) to another server (datacenter B).
Pfsense (Datacenter A ) to Ipfire (datacenter B) . All traffic to ip 126.96.36.199 in datacenter A trough port XXX must redirect to ip 188.8.131.52 in datacenter B.
Thanks for your time and patience
JKnott last edited by
All traffic to ip 184.108.40.206 in datacenter A trough port XXX must redirect to ip 220.127.116.11 in datacenter B.
That still doesn't sound right. Why not just go direct to 18.104.22.168? Port forwarding is part of NAT, which is used to get around an IPv4 address shortage.
Because , we have a lot of machines connected via ip to ip 22.214.171.124 and we must change some machines to connect to ip 1, but step by step. It's a migration from one hosting provider to another. In Ipfire is really simple, but i cant found the way to do in Pfsense.
elkato last edited by elkato
You must do a NAT there to accomplish port forward. In that case you could receive on FW A on 126.96.36.199 on WAN, and then forward to another iface with connectivity (maybe by VPN) to FW B. You can NAT PUBLIC IP over PUBLIC IP.
If your clients point 188.8.131.52 as destination IP, I would create a lan to ln VPN (OPENvpn prefered) between FW A and FW B, and forward that traffic internally to hosting server in DC B (probably directly to the private IP of hosting in DC B).
A common "H" connected network (both sites with their WANs on the top, their FW in the middle, and their LANs on the bottom. Crossing traffic between FWs in the middle).
Maybe Virtual IPs help you there (to listen to another Public IP on the same WAN iface).
Or you must use BGP with your own ASN to handle routing dynamically.
msf2000 last edited by
Sounds like you want the pfSense package called Server Load Balancing.