Inbound port forwarding via a single static public IP

Ellis Michael Lieberman · Mar 8, 2023, 6:13 AM

This post is deleted!

SteveITS · Mar 8, 2023, 7:17 AM

@ellis-michael-lieberman Can you post a screenshot of the rules?

Reflection is for connecting to your own WAN Izp from inside your network.

On WAN the NAT source is any (entire Internet), any port.
https://docs.netgate.com/pfsense/en/latest/nat/port-forwards.html

To double check, your pfSense WAN has a public IP?

Ellis Michael Lieberman · Mar 8, 2023, 7:25 AM

This post is deleted!

SteveITS · Mar 8, 2023, 7:26 AM

@ellis-michael-lieberman Source port is any, it’s random.

Destination is your WAN Address.

NAT destination is the private IP. NAT port is the target, e.g. port 80.

Ellis Michael Lieberman · Mar 8, 2023, 7:32 AM

This post is deleted!

Ellis Michael Lieberman · Mar 8, 2023, 7:34 AM

This post is deleted!

Ellis Michael Lieberman · Mar 8, 2023, 7:50 AM

This post is deleted!

Ellis Michael Lieberman · Mar 8, 2023, 8:33 AM

Sorry for being an idiot. OK so I create the rule on the WAN address. Where do I create a filter to send the packet to the correct device?

SteveITS · Mar 8, 2023, 2:11 PM

@ellis-michael-lieberman it was late and I used the wrong words. On the page I linked the Destination Ip and port are to where the remote person is connecting. So, your WAN port 80. The Redirect Target IP is the LAN IP of the web server, and Redirect Target port is the port.

https://docs.netgate.com/pfsense/en/latest/nat/port-forwards.html#adding-port-forwards

Ellis Michael Lieberman · Mar 8, 2023, 2:18 PM

@steveits
I found the problem. Though the screens said to not use redirection, that is what I actually needed to do. It was a simple fix, once I realized the screen instructions were at best misleading. It all works now. Here's what it looks like.