Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SSH From Wan to LAN

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 3 Posters 756 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      Jockanese
      last edited by

      Hi Guys,

      I am new to PF sense over the past month or so I apologies in advance for my lack of knowledge.

      Currently I have a pfsense routing sip traffic to a development set up I have in Vsphere.

      I need to be able to route an incoming external SSH connection to a LAN IP of a test server.

      I have a firewall rule configured

      Firewall/Rules/WAN

      Source - Group of WAN IP addresses configured within an alias
      Port- 22 (SSH)
      Destination- LAN IP of internal server (Single host or alias)
      Port- 22 (SSH)

      If I run a packet capture I can see the inbound connection attempt hit the firewall
      I'm wondering if I have missed something here as im unable to reach the internal server.

      Many thanks for your advice

      1 Reply Last reply Reply Quote 0
      • kiokomanK
        kiokoman LAYER 8
        last edited by

        other than
        firewall -> NAT -> port forward
        there is nothing else to do, rule should be automatically created for you

        Immagine.jpg Immagine2.jpg

        ̿' ̿'\̵͇̿̿\з=(◕_◕)=ε/̵͇̿̿/'̿'̿ ̿
        Please do not use chat/PM to ask for help
        we must focus on silencing this @guest character. we must make up lies and alter the copyrights !
        Don't forget to Upvote with the 👍 button for any post you find to be helpful.

        1 Reply Last reply Reply Quote 0
        • NogBadTheBadN
          NogBadTheBad
          last edited by NogBadTheBad

          n_ipv4_sftp is an alias to my SFTP server IPv4 IP address in the DMZ.

          Screenshot 2019-11-06 at 10.08.48.png

          Screenshot 2019-11-06 at 10.10.43.png

          Andy

          1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.