pfsense disabling firewall for one specific ip

sbwcws

Thanks consider this resolved.

KOM

20 replies later and we still don't know what the original problem was, nor the solution used.

sbwcws

@KOM You might need to scroll up..

sbwcws

@johnpoz said in pfsense disabling firewall for one specific ip:

@sbwcws said in pfsense disabling firewall for one specific ip:

ONE TO ONE NAT to bypass my firewall,

Then create an any any firewall rule - its that simple.. there will be nothing blocked.. Just natted.

If you don't want it natted at all - then connect the device in front of your pfsense and give it your public IP..

But I am with KOM here - you have not provide any info at all to why anyone would want/need to do such a thing. So to be honest it doesn't even peak my interest enough to think through how could be possible, if at all.. You could always get support direct from netgate/pfsense - with such a large deployment and moving away from fortigate sounds like enterprise level shit, have to assume you have a support contract with netgate ;)

You might be able to do some hackery shit with a bridge, etc. But yeah it would be messy!

Thanks

sbwcws

@viragomann said in pfsense disabling firewall for one specific ip:

If you want to keep it behind pfSense why don't you want to go with NAT?
If the machine should get a public IP and bypass the firewall, why don't you connect it to WAN?

Do you have multiple public IPs or a public subnet?

Thanks