port 443 - wan to lan

yupinebe

The task is to forward port 443 from wan interface to lan. Tried a lot of variants but no positive result.
After creating a rule

pass in quick on $WAN reply-to ( vr0 x.x.x.x) inet proto { tcp udp } from any to x.x.x.x port 443 tracker 1606228410 keep state label "USER_RULE"

port 443 is still unreachable and, consequently, no further forwarding rules via nat will be issued.

Gertjan

@yupinebe said in port 443 - wan to lan:

After creating a rule
pass in quick on $WAN reply-to ( vr0 x.x.x.x) inet proto { tcp udp } from any to x.x.x.x port 443 tracker 1606228410 keep state label "USER_RULE"

Your not using the GUI to make a NAT rule ?

You are using the https access of the GUI, and moved it away from the default 443 ?

stephenw10

That's a firewall rule and the destination is a public IP.

You need a NAT rule too and that changes the destination to the internal target IP for the firewall rule.

https://docs.netgate.com/pfsense/en/latest/nat/port-forwards.html#adding-port-forwards

Steve