• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Port Forward not working

Scheduled Pinned Locked Moved NAT
5 Posts 3 Posters 843 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    shetu
    last edited by Nov 13, 2018, 5:17 AM

    I have two rule one of them working another not working.
    Wan Rules
    0_1542086133955_nat.jpg
    Firewall
    0_1542086151456_rules.jpg

    WAN tcp *********:1329 -> 192.168.1.100:22 (172.16.0.3:3132) CLOSED:SYN_SENT 3 / 0 144 B / 0 B

    1 Reply Last reply Reply Quote 0
    • G
      Grimson Banned
      last edited by Nov 13, 2018, 10:52 AM

      https://www.netgate.com/docs/pfsense/nat/port-forward-troubleshooting.html

      1 Reply Last reply Reply Quote 0
      • J
        johnpoz LAYER 8 Global Moderator
        last edited by johnpoz Nov 13, 2018, 11:43 AM Nov 13, 2018, 11:41 AM

        So your WAN is rfc1918, that 172.16.0.3 address in your states..

        Clearly SYN was sent..

        Here is what a state should look like from a valid test from outside..
        0_1542109170764_testwithstates.png

        Since your in syn sent state.. Look to your SSH server that he answers to pfsense as his gateway, or that he doesn't have a firewall running... All in the troubleshooting doc linked too above.. Port forwarding issues are always PEBKAC... Running through the doc and some basic networking understanding... Which should really be a pre-req for anyone doing port forwarding and finding your issue should take you all of couple of minutes..

        If you have questions about specifics in the doc, or have done your sniffs and see that traffic hitting your wan, and not going out your lan to your forward, etc. Then show this and we can discuss - but since your state shows that syn was sent.. Not the case - so points to your ssh box not tralking back to pfsense as its gateway, or a firewall..

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 1
        • S
          shetu
          last edited by Nov 14, 2018, 3:10 PM

          Thanks for your reply. Yes my wan is rfc1918. Last time wan ip was 10.8.0.8 and my lan subnet 172.16.0.1/24. Few days ago they change wan ip. So I change my lan subnet too and forget to add pfsense ip in router dmz section. Now everything good.
          Last question what is difference between DMZ and Super DMZ (netis router)? I put my pfsense mac address to Super DMZ, it was not working.

          G 1 Reply Last reply Nov 14, 2018, 3:26 PM Reply Quote 0
          • G
            Grimson Banned @shetu
            last edited by Nov 14, 2018, 3:26 PM

            @shetu said in Port Forward not working:

            Last question what is difference between DMZ and Super DMZ (netis router)? I put my pfsense mac address to Super DMZ, it was not working.

            Read the netis router manual, this has nothing to do with pfSense. And "Super DMZ" is not a common term in networking, but rather some manufacturer specific thing.

            1 Reply Last reply Reply Quote 0
            2 out of 5
            • First post
              2/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received