Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Dual WAN - issues with port forwarding

    Scheduled Pinned Locked Moved Routing and Multi WAN
    1 Posts 1 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • X
      xelor
      last edited by

      Hi all,

      I was sucessfull to implement pfsense on 2 WAN connections:
      1. WAN1 - routing mode - router with PPPoE (adsl2+) and NAT 1:1 (everything is redirected to pfsense box)
      2. WAN2 - bridging mode - syncing ADSL2+ modem - pfsense with static IP

      There are 2 subnets:
      1. LAN-servers
      2. LAN-users

      Both of them are behind pfsense NAT.

      I have created the Load Balancr and WANs failover

      WAN1 Balancer WAN2
      WAN1 Fails WAN2
      WAN2 Fails WAN1

      NAT outbound is in advaced mode and setup to be active on WAN and WAN2 interfaces for each of 2 mentioned subnets.
      There are some port forwarding rules setup on both WANs.
      like ie.

      WAN1   TCP/UDP   22 (SSH)   a.b.c.114 (ext.: x1.y1.z1.1)                 22 (SSH) Allow SSH and SFTP  
      WAN2   TCP/UDP   22 (SSH)   a.b.c.114 (ext.: x2.y2.z2.18)         22 (SSH) Allow SSH and SFTP

      Firewall rules are setup - connectivity from internet is enstablished and port forwarding is working.

      Now my questions:

      How to setup the NAT on the WAN2 interface to allow users located in one of the 2 subnets access to all (forwarded) services using only public IP address x2.y2.z2.18?

      or

      how to config routing / NAT rules to allow view those services like follows:

      • when user (located in subnet) is trying access (forwarded) service on WAN1 - its traffic will be routed through WAN2 to WAN1 across internet
      • when user (located in subnet) is trying access (forwarded) service on WAN2 - its traffic will be routed through WAN1 to WAN2 across internet

      I know that it is faster to reach it localy but I have some development aplication that need to be reached from public IP to make it working.

      I was looking something similar on forum and other portals but so far no joy.
      I would be very thankful for any hints in that matter.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.