Moved from UI EdgeRouter to PFSense, NAT Reflection still not working?
-
I recently had an issue with my Ubiquiti Edgerouter, where I no longer was able to reach the web service hosted on my server, using my external domain name. I had NAT reflection turned on there.
Unable to sort it out on the Ubiquiti EdgeRouter, I thougth I'd give pfSense a try, never having tried it out before.
running it on an HP 800G2 Desktop mini, with tagged WAN and untagged Lan + managed switch.I got my home LAN online, and port forwarding is working from the WAN side.
But when I try to access: https://<domain-pointing-to-my-wan-IP-address>:<port>/ , from the LAN side. It is not working.
This was working fine before on the Ubuquiti Router and I dont believe I changed anything there to break it.
Now that I switched to pfSense and hopefully set it up right, it is still not working.I got Windows firewall rules set up to allow for edge traversal and allowed for any remote ip address.
Hopefully someone have any suggestions to what I can try.
Some screenshots from pfSense:
-
So this is embarrasing...
I have a Mail server that I recently changed the password on my mail account for, this Mail service runs on my home-server.
I got a scheduled powershell script that goes through the logs of this mail service and automatically blocks incoming connections from IP addresses that try to brute force-login or use my mail server as a forwarder. (fail2ban script I made in powershell)
Apparently, since I changed the password to my account, my Gateway-iP (192.168.10.1) was blocked by this script, probably because I had not changed it on my phone.
so it was not NAT reflection that was broken, it was my windows firewall...
will change the powershell script now, to not block my gateway IP :)
also going back to the Ubiquiti Router, as I was able to get IPsec to work there, while I find it very advanced for pfsense
