Routing from a passthrough'ed IP

kylegordon

Morning,

I have a 3G modem attached to the WAN side of my PFSense VM, and all is working well. The 3G modem (a Teltonika RUT950) is operating in bridge mode, and passing the public IP through to the PFSense VM, which is picking it up via DHCP just fine and giving me internet access.

My issue lies with trying to access the modems management IP on 192.168.1.1. I've given my PFSense VM a Virtual IP, and attached it to the WAN port. Using the shell on PFSense, I can ping the 3G modem, and tcpdump shows successful ICMP traffic from 192.168.1.10 (PFsense) to 192.168.1.1 (the modem).

However, when it comes to traffic on the LAN, it gets nowhere. LAN traffic, according to tcpdump on PFSense, emits with a source IP of the public IP, not the VIP. As a result, the modem is just dropping this 'foreign' traffic.

What's the recommended method to ensure this 'WAN side' traffic comes from the VIP rather than the public IP?

Cheers

KYle

viragomann

https://docs.netgate.com/pfsense/en/latest/interfaces/accessing-modem-from-inside-firewall.html

kylegordon

Missed that page in my searches, thank you. Will give that a shot this weekend.