Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    I only see internal IP's

    Scheduled Pinned Locked Moved NAT
    3 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      petabyte.se
      last edited by

      I've have recently changed from m0n0wall to pfsense,I thought it could be fun to have RRD graphics over the network. I have an webserver and an ftp behind the firewall, accessible from the outside (works fine). however if i look in my access.log for the webserver or the ftp only see the internal IP of my gateway instead of the external IPs from my visitors, why is that? and how is that even possible? This does not happen with m0n0wall.

      I have done an portforwarding in pfsense, made an rule for the port and i run with automatic NAT.

      any ideas would be appreciated.

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        With FTP, you may have enabled the FTP proxy on WAN, which would cause this. It's a known issue.

        Not sure what would be causing the web traffic to show up the same way unless you have some kind of a reverse proxy setup or an improperly specified port forward.

        A lot more information would be needed to say for certain.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by

          The FTP will be that way because that's how PF's FTP proxy functions.

          Web traffic will never show up like that, short of having a package installed that proxies it (haproxy being the only one right now that would do so).

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.