1:1 NAT Issue with UDP After Upgrade to 21.02.2 on SG5100
-
After seeing this https://redmine.pfsense.org/issues/11436, I tried updating from 2.4.5-p1 to 21.02.2 on an SG-5100. Now 1:1 NAT is not working on the non-default WAN for a UDP service running there. TCP seems to work fine.
There are two WAN interfaces, WAN0 and WAN1. When UDP traffic comes in WAN1, it goes out WAN0, which I discovered through packet captures. Changing the configuration to standard NAT with port forwarding made no difference. It seems like the reply-to function of the firewall rules is broken or is not working for UDP and it uses the default gateway instead. Specifying the gateway as WAN1 in the associated firewall rule made no difference and actually broke the TCP port forwarding that was reportedly fixed in the bug report.
I'm wondering if there is a configuration setting I am missing that would send packets our the wrong WAN? Of course, this was working fine on 2.4.5-P1.