• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Problem after public IP change

Scheduled Pinned Locked Moved NAT
15 Posts 2 Posters 733 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • V
    viragomann @beluclark
    last edited by Dec 26, 2023, 10:03 AM

    @beluclark
    So did you also update your NAT rules to the new IPs (aliases)?
    Since you might have used some IP aliases for that, which are static, you have to update them.

    B 1 Reply Last reply Dec 26, 2023, 10:57 AM Reply Quote 0
    • B
      beluclark @viragomann
      last edited by Dec 26, 2023, 10:57 AM

      @viragomann
      Yes, all are static and all are changed to it's new designated public IP

      V 1 Reply Last reply Dec 26, 2023, 11:59 AM Reply Quote 0
      • V
        viragomann @beluclark
        last edited by Dec 26, 2023, 11:59 AM

        @beluclark
        So I'd expect them to work.
        If not, there might be something wrong.

        Use packet capture to sniff the traffic on WAN and internal interface to see if something behaves faulty.

        B 1 Reply Last reply Dec 26, 2023, 12:19 PM Reply Quote 0
        • B
          beluclark @viragomann
          last edited by Dec 26, 2023, 12:19 PM

          @viragomann
          Thank you for your time.

          Upon performing packet capture, I did not see any traffic from the servers (I tried both 80 and 443). But if I test using this tool, it says that the ports are open. I really don't know what's happening right now.

          V 1 Reply Last reply Dec 26, 2023, 12:32 PM Reply Quote 0
          • V
            viragomann @beluclark
            last edited by Dec 26, 2023, 12:32 PM

            @beluclark said in Problem after public IP change:

            Upon performing packet capture, I did not see any traffic from the servers (I tried both 80 and 443)

            We are talking about traffic to the servers, as I understood.

            But if I test using this tool, it says that the ports are open. I really don't know what's happening right now.

            Maybe you didn't consider to update the public DNS?

            B 1 Reply Last reply Dec 26, 2023, 12:38 PM Reply Quote 0
            • B
              beluclark @viragomann
              last edited by Dec 26, 2023, 12:38 PM

              @viragomann said in Problem after public IP change:

              We are talking about traffic to the servers, as I understood.

              Sorry, yes to the servers.

              Public DNS are also properly configured. Both in pfSense, clients, and servers.

              V 1 Reply Last reply Dec 26, 2023, 12:45 PM Reply Quote 0
              • V
                viragomann @beluclark
                last edited by Dec 26, 2023, 12:45 PM

                @beluclark
                So how did you do the packet capture?

                When you run the port checker test, which shows that the port ist open, and sniff the WAN traffic, you should see the packets on the WAN. And if you go to the server facing interface you should see the packets as well.

                So when do you see nothing? Provider some more details about, what you do, please.

                B 2 Replies Last reply Dec 26, 2023, 12:53 PM Reply Quote 0
                • B
                  beluclark @viragomann
                  last edited by Dec 26, 2023, 12:53 PM

                  @viragomann said in Problem after public IP change:

                  So how did you do the packet capture?

                  Inside pfSense's Diagnostics > Packet Capture

                  Tried to access the server (both its IP and domain) via the outside network. But there was no packet being sniffed.

                  1 Reply Last reply Reply Quote 0
                  • B
                    beluclark @viragomann
                    last edited by Dec 26, 2023, 12:56 PM

                    @viragomann said in Problem after public IP change:

                    When you run the port checker test, which shows that the port ist open, and sniff the WAN traffic, you should see the packets on the WAN.

                    Yes, there were active states recorded from port checker's IP

                    1 Reply Last reply Reply Quote 0
                    • B
                      beluclark
                      last edited by Dec 26, 2023, 1:11 PM

                      I can only access those servers if the client is using third party VPN.

                      V 1 Reply Last reply Dec 26, 2023, 1:27 PM Reply Quote 0
                      • B
                        beluclark
                        last edited by Dec 26, 2023, 1:20 PM

                        Is reinstalling pfSense my last resort for this? 😢

                        1 Reply Last reply Reply Quote 0
                        • V
                          viragomann @beluclark
                          last edited by Dec 26, 2023, 1:27 PM

                          @beluclark said in Problem after public IP change:

                          I can only access those servers if the client is using third party VPN.

                          When you go over a public VPN, you can access you network, but not from say your smartphone, when you go over the cell internet connection (wifi disabled)?

                          B 1 Reply Last reply Dec 26, 2023, 1:30 PM Reply Quote 0
                          • B
                            beluclark @viragomann
                            last edited by Dec 26, 2023, 1:30 PM

                            @viragomann
                            Yes. By using public VPN, i can access them. I tried also using LTE/5G (with public VPN). With VPN off, I can no longer access them.

                            V 1 Reply Last reply Dec 26, 2023, 1:36 PM Reply Quote 0
                            • V
                              viragomann @beluclark
                              last edited by Dec 26, 2023, 1:36 PM

                              @beluclark
                              What exactly do you get in the browser?

                              Did you tried to access it by IP or just by host name?
                              Sniff the traffic on WAN port 80 and 443 and enter the IP into the browser. I'd expect to see the packets.

                              1 Reply Last reply Reply Quote 0
                              15 out of 15
                              • First post
                                15/15
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                                This community forum collects and processes your personal information.
                                consent.not_received