Inter Vlan Routing and NAT to Multi wan
-
Hello Everyone,
I this setup with 2 internet links Nating to internet using a Wan Link Group and it works fine. All Vlans can connect to the Internet without issues.
One of my internal interfaces has many subinterfaces with 6 vlans like below:
Below are the FW rules to each interface:
The issue is that when I try to reach device in vlan 30 from vlan 10 the packets are sent to the NAT rule in the interface.
In my background the first rule match should be "Vlan 10 -> Vlan 30" and forward the traffic locally not to NAT.
I can see no entry for this traffic in the States table.
What am I missing here?
I appreciate any help I can get from you guys.
Thanks in advance.
-
@jctech
Vlan30 address is only the interface address of pfSense. To allow access to the devices in that vlan you need to set vlan30 net as destination in the pass rule. -
@viragomann Thank you very much, such small detail and I just couldn't see it.
I was allowing only the SVI for that vlan not the whole subnet.Have a wonderful christmas and a happy new year sir!