• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Using Aliases With NAT Redirect Target IP Will Not Work

Scheduled Pinned Locked Moved NAT
13 Posts 3 Posters 1.8k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • E
    emammadov
    last edited by emammadov Sep 19, 2018, 1:31 PM Sep 19, 2018, 12:11 PM

    Why do you want to use only 1 entry in alias? Alias is designed to contain multiple ip addresses or fqdns. Did you tried to write xubuntu.jam.lan in Redirect target IP? Just in case type the hostname for that ip address in DHCP Static Mappings.

    Elvin

    A 1 Reply Last reply Sep 20, 2018, 1:39 AM Reply Quote 0
    • A
      alteredstate @emammadov
      last edited by Sep 20, 2018, 1:39 AM

      @emammadov said in Using Aliases With NAT Redirect Target IP Will Not Work:

      Why do you want to use only 1 entry in alias? Alias is designed to contain multiple ip addresses or fqdns. Did you tried to write xubuntu.jam.lan in Redirect target IP? Just in case type the hostname for that ip address in DHCP Static Mappings.

      I chose to use the Alias because it was the only thing I could get NAT "Redirect target IP" to accept:

      0_1537406374830_Screen Shot 2018-09-19 at 21.17.33.png
      You can see pfSense makes it available in a drop down selection.

      If I enter xubuntu or xubuntu.jam.lan it will not work:

      0_1537406522796_Screen Shot 2018-09-19 at 21.21.48.png

      0_1537406433079_Screen Shot 2018-09-19 at 21.20.17.png

      I had previously set that machine in DHCP Static mapping except I did not append the domain because it says not to below the text box:

      0_1537406895453_Screen Shot 2018-09-19 at 21.27.22.png

      1 Reply Last reply Reply Quote 0
      • E
        emammadov
        last edited by Sep 20, 2018, 5:21 AM

        what is the fdqn of your pfsense?

        Elvin

        1 Reply Last reply Reply Quote 0
        • E
          emammadov
          last edited by emammadov Sep 20, 2018, 6:01 AM Sep 20, 2018, 5:51 AM

          1. add hostname "xubuntu" to the ip address of xubuntu server in DHCP Static Mapping
          2. create an alias. name: xubuntu. in IP or FQDN field type "xubuntu.smart.lan". Name should be end in pfsense fqdn
          3. create a NAT. Type the name of alias "xubuntu" in the Redict IP.

          my pfsense hostname is pfsense.smart.lan.
          so I typed xubuntu.smart.lan and it worked.

          Elvin

          A 2 Replies Last reply Sep 20, 2018, 11:43 PM Reply Quote 0
          • A
            alteredstate @emammadov
            last edited by Sep 20, 2018, 11:43 PM

            @emammadov said in Using Aliases With NAT Redirect Target IP Will Not Work:

            1. add hostname "xubuntu" to the ip address of xubuntu server in DHCP Static Mapping
            2. create an alias. name: xubuntu. in IP or FQDN field type "xubuntu.smart.lan". Name should be end in pfsense fqdn
            3. create a NAT. Type the name of alias "xubuntu" in the Redict IP.

            my pfsense hostname is pfsense.smart.lan.
            so I typed xubuntu.smart.lan and it worked.

            This is what I have always had for my pfSense name and domain:
            0_1537486681236_Screen Shot 2018-09-20 at 19.37.22.png

            Did you test within your LAN or through your WAN? Mine has always worked within the LAN but will not work from my WAN unless I change the: "Redirect target IP" from the Alias name to the actual IP address of the machine...then it will work from the WAN.

            1 Reply Last reply Reply Quote 0
            • A
              alteredstate @emammadov
              last edited by Oct 9, 2018, 12:39 AM

              @emammadov said in Using Aliases With NAT Redirect Target IP Will Not Work:

              1. add hostname "xubuntu" to the ip address of xubuntu server in DHCP Static Mapping
              2. create an alias. name: xubuntu. in IP or FQDN field type "xubuntu.smart.lan". Name should be end in pfsense fqdn
              3. create a NAT. Type the name of alias "xubuntu" in the Redict IP.

              my pfsense hostname is pfsense.smart.lan.
              so I typed xubuntu.smart.lan and it worked.

              Did you test this within your LAN or WAN?

              1 Reply Last reply Reply Quote 0
              • E
                emammadov
                last edited by Oct 10, 2018, 5:57 PM

                I have tested through WAN and it worked.

                Elvin

                A 1 Reply Last reply Oct 15, 2018, 12:50 AM Reply Quote 0
                • D
                  Derelict LAYER 8 Netgate
                  last edited by Oct 11, 2018, 6:38 AM

                  Why are you using an FQDN alias for the target address of a port forward?

                  Lots of people use them to allow certain sources but I don't think I have ever seen anyone try to use it as a target. Why not just WAN address? Or the address of a VIP?

                  Chattanooga, Tennessee, USA
                  A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                  DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                  A 1 Reply Last reply Oct 11, 2018, 11:40 AM Reply Quote 0
                  • A
                    alteredstate @Derelict
                    last edited by alteredstate Oct 11, 2018, 11:57 AM Oct 11, 2018, 11:40 AM

                    @derelict said in Using Aliases With NAT Redirect Target IP Will Not Work:

                    Why are you using an FQDN alias for the target address of a port forward?

                    Lots of people use them to allow certain sources but I don't think I have ever seen anyone try to use it as a target. Why not just WAN address? Or the address of a VIP?

                    I did this because it was the only way I could set a hostname instead of an IP address in the NAT Redirect. I don't understand why I can not use hostnames that I have setup in the Static DHCP Mapping for the NAT Redirect Target? I'm trying to set this up so if I change a host's IP in the Static DHCP Mapping then I do NOT have to change it in the NAT and Firewall as well. In a nutshell I'm trying to avoid using any sort of IP address in those NAT and Firewall fields because I may want to change IP addresses of a machine in the DHCP and don't want to edit multiple fields in different sections of pfSense. Does that make sense?

                    I want to ask to make sure we are on the same page because you mentioned using the WAN address. Are you saying use the WAN address in the NAT Redirect? The NAT Redirect needs to be the machine I'm trying to connect with so I don't understand how using the WAN address in that field would correct my problem?

                    1 Reply Last reply Reply Quote 0
                    • A
                      alteredstate @emammadov
                      last edited by Oct 15, 2018, 12:50 AM

                      @emammadov said in Using Aliases With NAT Redirect Target IP Will Not Work:

                      I have tested through WAN and it worked.

                      Did you actually test this off your LAN though? If you simply use your WAN's IP address from your LAN that is not an accurate test as pfSense will loopback the connection. The test I do is disconnect my cell phone from the WiFi and use my cell data to make sure the connection works.

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                        [[user:consent.lead]]
                        [[user:consent.not_received]]