How to configure pfsense to forward ports without specifying a gateway on local PC?



  • That was an article on the Russian part of the forum, where I can found the answer (http://forum.pfsense.org/index.php/topic,40376.msg208841.html#msg208841). But now the link is broken. I know that task was completed with help of manual adding rules in outbond nat. Please help to find info about this task.


  • LAYER 8 Netgate

    You have to outbound NAT on the interface you are forwarding the traffic out of to the target. That way the source address appears to be from an address on the target's local subnet so reply traffic doesn't get forwarded by the target server to its default gateway.

    If you were port forwarding TCP port 80 to LAN host 192.168.1.100 the NAT would look like this:

    Firewall > NAT, Outbound

    Select hybrid if not already hybrid or manual and save. Make a new rule:

    Interface: LAN
    Address Family: IPv4
    Protocol: TCP
    Source: Any
    Destination: 192.168.1.100 - Port: 80
    Translation Address: Interface Address