Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Rdr by source IP and port

    NAT
    6
    14
    4.9k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      joaohf
      last edited by

      Hello,

      I need to make a crazy rule for a crazy protocol. For example:

      rdr pass on xl0 proto { tcp udp } from xxx.xxx.xxx.xxx port { 6767 } to yyy.yyy.yyy.yyy -> 10.0.1.55 port 6767
      rdr pass on xl0 proto { tcp udp } from xxx.xxx.xxx.xxx port { 6768 } to yyy.yyy.yyy.yyy -> 10.0.1.55 port 6767

      In the webgui i dont know how create it.

      Have pfsense suport to this type of nat? If no, is easy code in webgui?

      Thanks.

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        There is no support for source IP based NAT.

        1 Reply Last reply Reply Quote 0
        • J
          joaohf
          last edited by

          To has support, I need code this. Ok?

          1 Reply Last reply Reply Quote 0
          • H
            hoba
            last edited by

            Yes and submit your work so we can include it  ;D

            1 Reply Last reply Reply Quote 0
            • J
              joaohf
              last edited by

              Hello,

              I started same work do add rdr by source IP and port in Pfsense.

              The image attached show webgui in rdr rules.

              The code function well, but I not exhaustingly test yet. At least this generate the correct rules for rdr.

              How the best way to report my code in Pfsense?

              rdr.png
              rdr.png_thumb
              rdr.png_thumb

              1 Reply Last reply Reply Quote 0
              • H
                hoba
                last edited by

                Attach your changes as diff against our head codetree. All needed files. This won't go into 1.0 but we can add it to our headcodetree.

                1 Reply Last reply Reply Quote 0
                • M
                  martin.beauchamp
                  last edited by

                  Hi Awesome pfSense People!

                  I need this feature as well.  Has this been added to HEAD?

                  Is there a way that I can help test this on an embedded install?

                  Thanks,
                  Martin

                  1 Reply Last reply Reply Quote 0
                  • H
                    hoba
                    last edited by

                    Afaik we never got these changes.

                    1 Reply Last reply Reply Quote 0
                    • M
                      martin.beauchamp
                      last edited by

                      Well, I PM'ed joaohf a week ago and haven't heard anything.

                      Can anyone point me to the relevant docs to get started on this feature?

                      Thanks,
                      Martin

                      1 Reply Last reply Reply Quote 0
                      • J
                        joaohf
                        last edited by

                        Martin,

                        I have code this feature in my tests in RELEASE 1.0.1 its work well. But need move to test in a HEAD environment and post the diffs here.

                        1 Reply Last reply Reply Quote 0
                        • S
                          Splat
                          last edited by

                          I need this as well to set up a rdr to my proxy server.

                          1 Reply Last reply Reply Quote 0
                          • J
                            joaohf
                            last edited by

                            Hello,

                            See this link (past in browser) :

                            http://paginas.terra.com.br/informatica/joaohf/pfsense/filter.diff
                            http://paginas.terra.com.br/informatica/joaohf/pfsense/filter.inc
                            http://paginas.terra.com.br/informatica/joaohf/pfsense/firewall_nat_edit.diff
                            http://paginas.terra.com.br/informatica/joaohf/pfsense/firewall_nat_edit.php

                            Apply the diff in RELEASE 1.0.1.

                            I dont have a cvs HEAD build of pfsense to test this code. But in RELEASE 1.0.1 work for me. Not 100% but is a started.

                            Ok?

                            filter_diff.txt
                            firewall_nat_edit_diff.txt

                            1 Reply Last reply Reply Quote 0
                            • B
                              billm
                              last edited by

                              One comment.  Please make it resemble the rules screen where source port is hidden until the advanced button is clicked.  This isn't a feature that most people will want/use and I'd like to see no influx of support requests because people incorrectly chose the option and their port forwards don't work (and yes, this really does happen).

                              –Bill

                              pfSense core developer
                              blog - http://www.ucsecurity.com/
                              twitter - billmarquette

                              1 Reply Last reply Reply Quote 0
                              • G
                                greatbob6
                                last edited by

                                Has any more work been done on this?  I need this functionality as well.

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.