• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

SSH From Wan to LAN

Scheduled Pinned Locked Moved Firewalling
3 Posts 3 Posters 764 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • J
    Jockanese
    last edited by Nov 6, 2019, 10:00 AM

    Hi Guys,

    I am new to PF sense over the past month or so I apologies in advance for my lack of knowledge.

    Currently I have a pfsense routing sip traffic to a development set up I have in Vsphere.

    I need to be able to route an incoming external SSH connection to a LAN IP of a test server.

    I have a firewall rule configured

    Firewall/Rules/WAN

    Source - Group of WAN IP addresses configured within an alias
    Port- 22 (SSH)
    Destination- LAN IP of internal server (Single host or alias)
    Port- 22 (SSH)

    If I run a packet capture I can see the inbound connection attempt hit the firewall
    I'm wondering if I have missed something here as im unable to reach the internal server.

    Many thanks for your advice

    1 Reply Last reply Reply Quote 0
    • K
      kiokoman LAYER 8
      last edited by Nov 6, 2019, 10:08 AM

      other than
      firewall -> NAT -> port forward
      there is nothing else to do, rule should be automatically created for you

      Immagine.jpg Immagine2.jpg

      ̿' ̿'\̵͇̿̿\з=(◕_◕)=ε/̵͇̿̿/'̿'̿ ̿
      Please do not use chat/PM to ask for help
      we must focus on silencing this @guest character. we must make up lies and alter the copyrights !
      Don't forget to Upvote with the 👍 button for any post you find to be helpful.

      1 Reply Last reply Reply Quote 0
      • N
        NogBadTheBad
        last edited by NogBadTheBad Nov 6, 2019, 10:13 AM Nov 6, 2019, 10:11 AM

        n_ipv4_sftp is an alias to my SFTP server IPv4 IP address in the DMZ.

        Screenshot 2019-11-06 at 10.08.48.png

        Screenshot 2019-11-06 at 10.10.43.png

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        1 Reply Last reply Reply Quote 0
        1 out of 3
        • First post
          1/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received