Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Very odd (to me) port forwarding issue.

    Scheduled Pinned Locked Moved NAT
    3 Posts 2 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tristansbs
      last edited by

      I have a pretty standard home setup (internet -> modem -> pfsense -> lan switch -> lan), and am having some issues getting port forwarding to work.  I have already gone through the port forwarding troubleshooting on doc.pfsense.org, and have set it up exactly as described there.  After capturing packets on both the WAN and LAN, I can see both the TCP and UDP traffic that I'm forwarding coming in on the WAN.  I can also see it on the LAN side, but every single port forwarded packet (TCP or UDP) has an IP header checksum of 0x000.  Additionally, all of the TCP packets have had their destination port changed to a seemingly random port >10000, while the UDP packets retain their correct destination port.  The LAN machine that it's forwarding to ends up droppoing the packets because of their checksums.  What could be causing this type of issue?  All the other traffic comes through just fine with proper checksums.

      Thanks in advance for your help!

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        Can you show screenshots of your firewall and NAT rules?

        Did you enable advanced outbound nat?

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • T
          tristansbs
          last edited by

          @GruensFroeschli:

          Can you show screenshots of your firewall and NAT rules?

          Did you enable advanced outbound nat?

          I have not touched the outbound NAT settings; it's still set to the default of Automatic Advanced.

          Here are the pictures (I have tried it with and without the aliases)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.