PfSense hides source when using NAT

Ih4t3MS · Jun 15, 2009, 2:34 PM

Hi

I have a 2003 server running iis. I can access it fine, but in the log files all requests appears to come from the firewall (internal IP). I even set up a whatismyip type page on the server and it returns the internal ip of the firewall. This can cause problems with some of the services on the server. Any suggestions on how to let pfsense not hide the client ip?

Thanks.

clarknova · Jun 15, 2009, 3:12 PM

That doesn't sound like normal behaviour. What packages are you running on pfsense? Are you running any unconventional configuration with the firewall, loadbalancing, etc?

db

Ih4t3MS · Jun 16, 2009, 7:23 AM

hi clarknova

Sorry I was a bit tired. Here is the setup:

Two firewalls with carp as failover not loadbalancing. Web servers gateway is an internal virtual ip. The client connects to an external virtual ip which is NATed to the server. But the ip that gets logged and we see on the showmyip page is the actual ip of the first firewall(master) in the carp setup. Does this make any sense?

Guest · Jun 21, 2009, 3:52 AM

@Ih4t3MS:

… all requests appears to come from the firewall (internal IP). ... returns the internal ip of the firewall....

I am also having a similar issue. Did you achieve a resolution to this problem?