Moving from PIX506e to pfsense



  • Currently using a PIX506e with 16 outside IP's. 
    the IP's are nat'd to serveral servers and other machines inside the network.
    How Do i set these up in pfsense. I have tried the virtual ip, but i don't think i am
    doing it right.  Also how do I set rules for those individaul IP's once nat'd

    for example
    outside ip 123.123.123.123 maps to internal network 1.0.0.123 and allows protocols www, https, ftp
    outside ip 123.123.123.124 maps to internal network 1.0.0.124 and allows protocols www, ssh, smtp



  • In general, you would do something like-

    1. Go to Firewall, Virtual IPs. Add the outside IPs.
    2. Setup outside to inside maps via Firewall, NAT, 1:1
    3. Go to Firewall, Rules, WAN, and create rules to allow the traffic.
      eg- TCP * * 1.0.0.124 80 * *
      etc…

    Although you could just use port-forwards instead of 1:1 NAT.


Log in to reply