NAT / Alias Clarification



  • I read the pfsense Definitive Guide which helped out with Aliases and their understanding.  Under Rules I can create an Alias and bunch up the TCP Ports pointing to the server.

    However, within the NAT is this the same?  It states "range" which I'm now second guessing could mean starting with the lowest all the way to the largest within the alias, i.e. if an alias contained 25, 110, 143, 443 then would every single port between 25 and 443 be open, or just these four specific ports? This probably sounds dumb but I'd rather have a firm answer than an assumption…


  • Rebel Alliance Developer Netgate

    With a range you just put the alias name in the start and the end (or leave the end blank) and it just uses the specific ports mentioned in the alias.

    I think 2.0 improved the handling of this in the GUI a bit.



  • @jimp:

    With a range you just put the alias name in the start and the end (or leave the end blank) and it just uses the specific ports mentioned in the alias.

    I think 2.0 improved the handling of this in the GUI a bit.

    Ah.  Well I don't have the beta 2.0 as I got the 1.2.3 stable version…can't wait until 2.0 final comes out though!

    I probably mis-worded but I think you answered it.  All I was really asking was does the NAT consider and use the Port Aliases in the same manner as the Rules?


  • Rebel Alliance Developer Netgate

    It should be considered the same, using only those specific ports.



  • @jimp:

    It should be considered the same, using only those specific ports.

    Well I appreciate that answer and one would think they would being a firewall system but also being with such trust is invested I just felt the need to ask first.  Thank you.

    UPDATE:
    Well I received an error when I tried the NAT port alias…hmm...same format as the other ports but when I removed the individuals and added the port alias it all screwed up.


Log in to reply