PFSENSE : Disable WAN WebGUI on Virtual IP port for use later
-
Hello everyone,
I would like to disable WebGUI port on WAN(port 80) for use later with the NAT, Is it possible ?
Thank you
-
huh? Just because pfsense listens on 80 on all IPs for its webgui - you can still forward it.
But you can have pfsense webgui listen on any port you want, if you don't want it to listen on 80 then just change it.
-
No, I'm sorry, I didn't specify that I was using the virtual IP address (10.1.1.251, for example) and that I wanted to remove or disable the access port (80) to WebGUI. Because I want to use NAT on 10.1.1.251:80 and redirect to a LAN IP address, if it's possible.
Thank you !
-
And again you can change the port the webgui listens on..
And again it doesn't matter if it listens on a vip.. NATs happen before! So nat away..
So your wan is rfc1918 - WTF you need to nat for? Natting from rfc1918 to rfc1918 doesn't make a lot of sense in the first place.
-
Yes, i understand and i just tested, but it's not that i would like.
I would like redirect all paquets to destination of my virtuel IP(10.1.1251) located on my WAN interface (10.1.1.250) to my LAN IP(192.168.1.2).
I would like for all ports like 80, 443...etc(from 1 to 65535) redirect them to my LAN IP.I don't konw if i was clear
Thanks
-
Then do a bit of RTFM: https://www.netgate.com/docs/pfsense/book/nat/1-1-nat.html
-
Exactly^ but still pretty much zero reason to NAT at all from rfc1918 to 1918 unless you have to use overlapping networks - which is bad choice.. If you have 2 rfc1918 networks that overlap - then just change 1, not like there is not plenty of networks to use in rfc1918 space.
-
Ok thank you for all these responses, please excuse me for not reading the documentation properly.
Problem solved thanks ! ;)
