1:1 nat and bridge on with 3 interfaces?
-
I have 3 interfaces:
WAN
LAN
DMZThere is an 1:1 nat from wan to lan to several addresses and I want also have an WAN to DMZ bridge for a transparent firewall. The problem is that the public IP behind DMZ is not accessible. Is this a possible setup?
-
That should be fine as long as the public IP behind the DMZ is not being used by the 1:1 NAT rules or VIPs.
Steve
-
Hi the IP is not one of the 1:1 Nat rules and is public and used for the VPS behind the DMZ. The strange part is that nothing from the DMZ network is showing in the ARP table. Not sure what to do anymore.
-
It would not necessarily show in the ARP table unless pfSense has been talking to it directly. The ISP would need to ARP for it and it back to the gateway but that is transparent through the bridge at layer 2.
What exactly is not working? What is working? How are you testing?
Steve