Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VIP Port Forward or 1:1 not working

    Scheduled Pinned Locked Moved
    NAT
    1
    1
    2.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      scrocker
      last edited by

      Run Carp setup

      CARP VIP WAN xxx.xxx.xxx.60 LAN at 10.0.0.1
      Master WAN at xxx.xxx.xxx.61 LAN at 10.0.0.2
      Backup WAN xxx.xxx.xxx.62 LAN at 10.0.0.3

      Trying to create VIP at xxx.xxx.xxx.50 LAN port forward or 1:1 to 10.0.0.171.

      I have a LAN rule to allow any protocol from the LAN network to any Gateway.
      I have a WAN rule to allow any protocol from any source to 10.0.0.171.
      I have port forwards working with VIP WAN xxx.xxx.xxx.60 but can not get any other VIP to port forward.

      I tried to create any out bound rule for xxx.xxx.xxx.50 and 10.0.0.171 but it will not allow it saying that 10.0.0.171/32 over laps the 10.0.0.0/24 outbound rule.
      I tried changing the 10.0.0.0/24 outbound rule to any gateway but then everyones outbound traffic moved to the Master gateway of 61 instead of the VIP
      gateway of 60 and broke some IP restricted WEB services and I had to change it back before I knew if it fixed the problem.

      So does 1:1 NAT need any WAN or LAN rules?
      Or is my problem with the outbound rule?
      Do I need to make subnets of my LAN for each VIP and its on outbound rules?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.