Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    NAT issue after 21.02 upgrade

    NAT
    2
    4
    177
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O
      omid_1985 last edited by

      Hi,

      After upgrading to v.21.02 on Netgate SG-3100, all port-forwarding function stopped completely, and I'm trying to troubleshoot it. Plex stopped responding to TCP 32400, Xbox One NAT is changed to strict, and HAProxy, which is pointing to Nextcloud, does not open HTTPS port from WAN anymore. So all messed up. No need to mention on this post that it also disconnected my PPPoE WAN connection and spend three hours last night to bring it back up.

      I'm using Hybrid Outbound NAT rule generation (Automatic Outbound NAT + rules below) and this is what I have:

      alt text

      The only rules that I have added are the 1st (Game_Consoles) and the 8th (PIANETHERLANDS). All other rules have been generated automatically.
      Do I really need all these rules?

      Since UPnP was never reliable enough on my 700 Australian dollar Netgate hardware to work correctly (as it was on my $200 consumer router), I was heavily relying on these forwarded ports, which also stopped working after 21.02 upgrade:

      alt text

      I 1 Reply Last reply Reply Quote 0
      • I
        internetxs @omid_1985 last edited by

        @omid_1985 I have exactly the same on my sg-5100

        O 1 Reply Last reply Reply Quote 0
        • O
          omid_1985 @internetxs last edited by omid_1985

          @internetxs They pulled out the update for SG-3100 and SG-1000 but I don't see any update regarding SG-5100 yet:

          pfSense Plus and SG-3100

          1 Reply Last reply Reply Quote 0
          • O
            omid_1985 last edited by

            To update this post:

            I have upgraded Netgate SG-3100 to newly released v.21.02-p1 and also upgraded the unbound package to the unbound-1.13.1 with:

            pkg upgrade -fy unbound; pfSsh.php playback svc restart unbound
            

            Unfortunately, all the NAT issue came back again. HAProxy does not respond to HTTPS port from outside the LAN network, and Xbox NAT status changed to closed again even though both using the same port forwarding settings that I had in the previous version 2.4.5p1.

            I have reloaded v.2.4.5p1 again with the same port forwarding setting, and everything started working again. Xbox NAT status is Open, and HAProxy correctly working from WAN.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy