VPN + NAT + FTP
-
Hi there
I'm having a problem with setting up an ipSec tunnel for FTP traffic on pfSense 1.2.3RC latest.
In the old days, I did the above with ipSec + Racoon + FTP-Proxy, and some natting! That was on FreeBSD 5.2.
Now I would like to do the same in fpSense!
I have a small class C private network behind my FreeBSD based firewall. One internal server (192.168.1.11) needs access to a FTP server that is connected via ipSec tunnel. The request from my internal server goes to an IP address (lets call it 1.2.3.94) and the firewall will pickup the request via a rule in ipnat.rules:
rdr rl0 1.2.3.94/32 port 21 -> 127.0.0.1 port ftp-proxy tcp
"rl0" is my internal interface (192.168.1.1)The FTP-Helper app takes care of the actual connection, and passes the content back to my internal server. The FTP server (IP 1.2.3.94) is connected via ipSec. So no routing is being used
That has been working for years!
Now I want to use pfSense as my FireWall.
I did the ipSec stuff in pfSence (an hour or more did that job) :D The tunnel works fine if I'm on the fw console and try ping 1.2.3.94 or ftp!But how do I setup the ipnat stuff??
It looks to me that the focus is on inbound FTP connection!
I found a link: http://baudizm.blogsome.com/2008/08/20/allow-outbound-ftp-through-pfsense-firewall/
Bu I somehow mis the natting stuff!Solving this problem will really make my day.
Thanx in advance,
Lars Bækmark
BTW: pfSence really is a nice firewall, and the price is just…....