Converting from a PIX firwall to pfsense
-
We are converting from a PIX firewall to a pfsense firewall. One of the thing I need information is like the following line on a PIX:
static (inside,DMZ) 10.205.0.0 10.205.0.0 netmask 255.255.0.0 0 0
How would I do this on the pfsense box?
Thanks
-
I'm not familiar with the interworkings of PIX firewalls that well, what exactly does that command do and more importantly what are you trying to achieve?
-Erik
-
What this command does is that it will not NAT across a inside IP address, or in this case, a inside network into the DMZ. In other words, it keeps his inside address and is able to connect to any of the DMZ servers. The PIXs creates this static. This is the way we have it on the PIX right now. If there is a different way to do it on PFsense, please let me know.
Thanks
-
By default, pfSense will not NAT between internal subnets.
You can customize this behavior by using manual outbound NAT rules.
