1. Home
  2. pfSense® Software
  3. NAT
  4. VIP Port Forward or 1:1 not working

VIP Port Forward or 1:1 not working

  • S

    Run Carp setup

    CARP VIP WAN xxx.xxx.xxx.60 LAN at 10.0.0.1
    Master WAN at xxx.xxx.xxx.61 LAN at 10.0.0.2
    Backup WAN xxx.xxx.xxx.62 LAN at 10.0.0.3

    Trying to create VIP at xxx.xxx.xxx.50 LAN port forward or 1:1 to 10.0.0.171.

    I have a LAN rule to allow any protocol from the LAN network to any Gateway.
    I have a WAN rule to allow any protocol from any source to 10.0.0.171.
    I have port forwards working with VIP WAN xxx.xxx.xxx.60 but can not get any other VIP to port forward.

    I tried to create any out bound rule for xxx.xxx.xxx.50 and 10.0.0.171 but it will not allow it saying that 10.0.0.171/32 over laps the 10.0.0.0/24 outbound rule.
    I tried changing the 10.0.0.0/24 outbound rule to any gateway but then everyones outbound traffic moved to the Master gateway of 61 instead of the VIP
    gateway of 60 and broke some IP restricted WEB services and I had to change it back before I knew if it fixed the problem.

    So does 1:1 NAT need any WAN or LAN rules?
    Or is my problem with the outbound rule?
    Do I need to make subnets of my LAN for each VIP and its on outbound rules?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy