Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port Fowarding, but only from specific external IPs?

    Scheduled Pinned Locked Moved NAT
    3 Posts 3 Posters 499 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      Anquetil
      last edited by

      Have just setup pfSense at home for the first time and have it working nicely.

      I can get plain old port forwarding working no issue.
      But I would like to lock it down further, by only allowing known external IPs - workplace IP's.

      I trawled the net for hours trying to find a guide on this question, this should be easy but I just cant get it to work unless I allow any external IP in.

      I have a simple network and requirements:

      • pfSense 192.168.0.1
      • Internal Server to port forward to 192.168.0.2
      • Ports 50001 & 50002
      • Only allow external IPs e.g. 10.20.50.60 & 10.20.51.60

      Would appreciate any direction?

      1 Reply Last reply Reply Quote 0
      • GrimsonG
        Grimson Banned
        last edited by

        https://www.netgate.com/docs/pfsense/book/nat/port-forwards.html

        1 Reply Last reply Reply Quote 0
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          Yes, you can set a source IP (or an alias containing several IPs) in either the port forward directly or in the firewall rule filtering traffic forwarded by it.

          Steve

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.