Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    NAT Rules Not Working After Hardware Change

    Scheduled Pinned Locked Moved
    NAT
    2
    3
    624
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bonzo72
      last edited by

      I've been using pfSense for several months on a network appliance that was suffering due to the model of NICs (Realtek) not being up to the task of handling the traffic (specifically the WAN port).
      However, I had a couple of NAT rules programmed that always worked just fine. One for Plex and another for Bitwarden. I recently swapped out the sub-par hardware for a Protectli Vault with Intel NICs. I restored my config from the previous device and made sure the new interface names were correct in the new config.
      So far everything seems to work great. The WAN port is no longer getting overwhelmed constantly and uptime has been excellent.

      The only issue are my NAT rules. As far as I can tell by comparing the configs of the two devices (I still have the old hardware to look at) everything is the same. However, the port forwarding is not passing through, apparently. Is there anything I need to be aware of with pfSense when swapping out hardware? I'll keep digging of course but I was just interested in anyone else's experience with this.

      Thanks

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance @bonzo72
        last edited by

        @bonzo72 Wild guess but was your old router a DMZ for an ISP router, and did you update the ISP router's setting?

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        B 1 Reply Last reply Reply Quote 0
        • B
          bonzo72 @SteveITS
          last edited by

          @steveits Thanks for your reply.

          I finally figured it out. Quite obvious now that I see it.
          The ATT box's programming for the "pass-through" mode requires you to enter the MAC address of the NIC that the traffic is being forwarded to. Since the router hardware had changed, of course the MAC had changed. Duh...

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.