Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    [SOLVED] Turn off NAT on OpenVPN client interface?

    NAT
    1
    2
    318
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gertty last edited by gertty

      I'm currently using Hybrid Outbound NAT on a pfSense box. I have one physical WAN interface, one LAN interface with several VLANs, and an OpenVPN client to a VPN service that I route some traffic over instead of the WAN.

      I would like to setup another VPN client to my own VPS and turn off NAT for just this one ovpnc interface. I'll have static routes on the VPS side so it knows how to reach the subnets on the LAN side of pfSense. I can't figure how to turn off NAT just for the one OVPN client interface.

      1 Reply Last reply Reply Quote 0
      • G
        gertty last edited by gertty

        ...of course the morning after I posted this, I had another idea on a place to check.
        do not nat.jpg

        In Hybrid Outbound NAT mode, it looks like adding a rule that matches the interface I want to exclude and then checking the "Do not NAT" option for that rule works as you might expect. 😄

        Before posting, I was looking for some list of interfaces that were NAT'd or some per-interface firewall rule to disable. Since Hybrid Outbound NAT works so well, I forget it is there and that I can modify the ruleset. I've even used it before to make the local NAT port static for a particular device 🤦

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy