Problem after public IP change

viragomann · Dec 26, 2023, 10:03 AM

@beluclark
So did you also update your NAT rules to the new IPs (aliases)?
Since you might have used some IP aliases for that, which are static, you have to update them.

beluclark · Dec 26, 2023, 10:57 AM

@viragomann
Yes, all are static and all are changed to it's new designated public IP

viragomann · Dec 26, 2023, 11:59 AM

@beluclark
So I'd expect them to work.
If not, there might be something wrong.

Use packet capture to sniff the traffic on WAN and internal interface to see if something behaves faulty.

beluclark · Dec 26, 2023, 12:19 PM

@viragomann
Thank you for your time.

Upon performing packet capture, I did not see any traffic from the servers (I tried both 80 and 443). But if I test using this tool, it says that the ports are open. I really don't know what's happening right now.

viragomann · Dec 26, 2023, 12:32 PM

@beluclark said in Problem after public IP change:

Upon performing packet capture, I did not see any traffic from the servers (I tried both 80 and 443)

We are talking about traffic to the servers, as I understood.

But if I test using this tool, it says that the ports are open. I really don't know what's happening right now.

Maybe you didn't consider to update the public DNS?

beluclark · Dec 26, 2023, 12:38 PM

@viragomann said in Problem after public IP change:

We are talking about traffic to the servers, as I understood.

Sorry, yes to the servers.

Public DNS are also properly configured. Both in pfSense, clients, and servers.

viragomann · Dec 26, 2023, 12:45 PM

@beluclark
So how did you do the packet capture?

When you run the port checker test, which shows that the port ist open, and sniff the WAN traffic, you should see the packets on the WAN. And if you go to the server facing interface you should see the packets as well.

So when do you see nothing? Provider some more details about, what you do, please.

beluclark · Dec 26, 2023, 12:53 PM

@viragomann said in Problem after public IP change:

So how did you do the packet capture?

Inside pfSense's Diagnostics > Packet Capture

Tried to access the server (both its IP and domain) via the outside network. But there was no packet being sniffed.

beluclark · Dec 26, 2023, 12:56 PM

@viragomann said in Problem after public IP change:

When you run the port checker test, which shows that the port ist open, and sniff the WAN traffic, you should see the packets on the WAN.

Yes, there were active states recorded from port checker's IP

beluclark · Dec 26, 2023, 1:11 PM

I can only access those servers if the client is using third party VPN.

beluclark · Dec 26, 2023, 1:20 PM

Is reinstalling pfSense my last resort for this?

viragomann · Dec 26, 2023, 1:27 PM

@beluclark said in Problem after public IP change:

I can only access those servers if the client is using third party VPN.

When you go over a public VPN, you can access you network, but not from say your smartphone, when you go over the cell internet connection (wifi disabled)?

beluclark · Dec 26, 2023, 1:30 PM

@viragomann
Yes. By using public VPN, i can access them. I tried also using LTE/5G (with public VPN). With VPN off, I can no longer access them.

viragomann · Dec 26, 2023, 1:36 PM

@beluclark
What exactly do you get in the browser?

Did you tried to access it by IP or just by host name?
Sniff the traffic on WAN port 80 and 443 and enter the IP into the browser. I'd expect to see the packets.