• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to remove NAT rule from console

Scheduled Pinned Locked Moved NAT
8 Posts 3 Posters 10.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • I
    ICO
    last edited by Oct 4, 2010, 5:37 PM

    I created a NAT rule wrong, and now I can not access the administration console. I can remove it with a command?

    1 Reply Last reply Reply Quote 0
    • G
      GruensFroeschli
      last edited by Oct 4, 2010, 7:27 PM

      How are you accessing the GUI?
      There should not be any NAT involved…
      How do you have access to the console?
      Via ssh?

      You could modify the config.xml directly.

      We do what we must, because we can.

      Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

      1 Reply Last reply Reply Quote 0
      • I
        ICO
        last edited by Oct 5, 2010, 8:45 AM

        I have no access to GUI, because the rule that I created in error prevents it.
        I can access the console but in the file "config.xml", can not find any references to NAT.

        Can you help please?

        1 Reply Last reply Reply Quote 0
        • G
          GruensFroeschli
          last edited by Oct 5, 2010, 8:50 AM

          Look for the <nat>tag

          It should look something like this:

          <nat><ipsecpassthru><rule><protocol>udp</protocol>
                      <external-port>53</external-port>
                      <target>Bluemage</target>
                      <local-port>53</local-port>
                      <interface>wan</interface>
                      <descr>TCP over DNS</descr></rule>
                  <rule><protocol>tcp/udp</protocol>
                      <external-port>5500</external-port>
                      <target>Bluemage</target>
                      <local-port>5500</local-port>
                      <interface>wan</interface></rule>
                  <rule><protocol>tcp/udp</protocol>
                      <external-port>53436</external-port>
                      <target>192.168.1.11</target>
                      <local-port>53436</local-port>
                      <interface>wan</interface></rule>
                  <advancedoutbound><rule><source>
                              <network>any</network>

          <sourceport><descr><target><interface>wan</interface>
                          <destination><any></any></destination>
                          <natport></natport></target></descr></sourceport></rule>
                      <enable></enable></advancedoutbound></ipsecpassthru></nat></nat>

          We do what we must, because we can.

          Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

          1 Reply Last reply Reply Quote 0
          • I
            ICO
            last edited by Oct 5, 2010, 9:00 AM

            Located, thank you very much

            1 Reply Last reply Reply Quote 0
            • I
              ICO
              last edited by Oct 5, 2010, 10:01 AM

              When I change the contents of the config.xml file and delete the rule, as I do to refresh the changes?

              Regads.

              1 Reply Last reply Reply Quote 0
              • G
                GruensFroeschli
                last edited by Oct 5, 2010, 1:15 PM

                Just reboot ^^"

                Or switch to the developers shell and look at the help file.
                afaik there is somewhere the command listed to reload the config.

                We do what we must, because we can.

                Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

                1 Reply Last reply Reply Quote 0
                • J
                  jimp Rebel Alliance Developer Netgate
                  last edited by Oct 5, 2010, 1:48 PM

                  edit the config, rm /tmp/config.cache, then run /etc/rc.filter_configure

                  Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

                  Need help fast? Netgate Global Support!

                  Do not Chat/PM for help!

                  1 Reply Last reply Reply Quote 0
                  8 out of 8
                  • First post
                    8/8
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received