Помогите разобраться с сыкой котарая испl
-
В принципе я пару роутев основных написал ручками. Вроде все заработало.
Теперь такой вопрос.
У меня в локалки есть сайт. За nat. Когда захожу с инета то все работает. Но когда я пытаюсь зайти на сайт из локалки, он не заходит. Раньше стояли разные роутеры такого не было.
Эта проблема описана здесь http://forum.pfsense.org/index.php/topic,28708.0.html когда сайт заходится за nat и клиент за этим же натом.
Там написано что нужно включить NAT Reflection. Я включил. Не помогло. -
Я вообще не вижу, чтобы pfSense получал 10.230.42.1 или что-нибудь похожее…
RIP - это требование провайдера?Да, это требования провайдера.
Ну надо же…
-
В принципе я пару роутев основных написал ручками. Вроде все заработало.
Теперь такой вопрос.
У меня в локалки есть сайт. За nat. Когда захожу с инета то все работает. Но когда я пытаюсь зайти на сайт из локалки, он не заходит. Раньше стояли разные роутеры такого не было.
Эта проблема описана здесь http://forum.pfsense.org/index.php/topic,28708.0.html когда сайт заходится за nat и клиент за этим же натом.
Там написано что нужно включить NAT Reflection. Я включил. Не помогло.Опять - где IP? И как включил NAT Reflection?
-
Опять - где IP? И как включил NAT Reflection?
IP 217.197.240.43 Локалка 192.168.200.0
Где поставить галочку напротив NAT Reflection я нашел. Но это не помогло. -
Опять - где IP? И как включил NAT Reflection?
IP 217.197.240.43 Локалка 192.168.200.0
Где поставить галочку напротив NAT Reflection я нашел. Но это не помогло.И ты пытаешься с некой машины подключенной к LAN идти на сервер 217.197.240.43, который на самом деле подключен к той же LAN?
Галочка на самом едле нужно убрать. -
И ты пытаешься с некой машины подключенной к LAN идти на сервер 217.197.240.43, который на самом деле подключен к той же LAN?
Да ip алдес сервера 192.168.200.1. Ip адрес клиента 192.168.200.100. Прямой ip 217.197.240.43, сайт www.site.ru/
Пинг www.site.ru с 192.168.200.100Обмен пакетами с www.site.ru [217.197.240.43] с 32 байтами данных:
Ответ от 217.197.240.43: число байт=32 время=4мс TTL=58
Ответ от 217.197.240.43: число байт=32 время=4мс TTL=58
Ответ от 217.197.240.43: число байт=32 время=4мс TTL=58
Ответ от 217.197.240.43: число байт=32 время=4мс TTL=58Сразу скажу что DNS в локалки на этот сайт настроить нельяз. Там есть сервисы в которых обязательно нужно прописать прямой ip/
-
Галочка на самом едле нужно убрать.
Да и если я галочку снимаю с NAT Reflection. То у меня не точ локальные ресурсы не грузятся. У меня и инет пропадает
-
Галочка на самом едле нужно убрать.
Да и если я галочку снимаю с NAT Reflection. То у меня не точ локальные ресурсы не грузятся. У меня и инет пропадает
Сурово, а можешь показать```
pfctl -sn -
$ pfctl -sn
nat-anchor "pftpx/" all
nat-anchor "natearly/" all
nat-anchor "natrules/" all
nat on nfe0 inet from 192.168.200.0/24 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on ng0 inet from 192.168.200.0/24 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on nfe0 inet from 192.168.200.0/24 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on ng0 inet from 192.168.200.0/24 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on nfe0 inet from 192.168.200.0/24 to any -> (ng0) round-robin
nat on ng0 inet from 192.168.200.0/24 to any -> (ng0) round-robin
nat on nfe0 inet from 192.168.201.96/28 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on ng0 inet from 192.168.201.96/28 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on nfe0 inet from 192.168.201.96/28 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on ng0 inet from 192.168.201.96/28 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on nfe0 inet from 192.168.201.96/28 to any -> (ng0) round-robin
nat on ng0 inet from 192.168.201.96/28 to any -> (ng0) round-robin
rdr-anchor "pftpx/" all
rdr-anchor "slb" all
rdr on ng0 inet proto tcp from any to any port = http -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = http -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27015 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27015 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27010 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27010 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27011 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27040 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27040 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27025 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27025 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = afs3-prserver -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = afs3-prserver -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 6003 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 6003 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27016 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27016 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to 217.197.240.43 port = 27960 -> 192.168.200.1
rdr on ng0 inet proto udp from any to 217.197.240.43 port = 27960 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27017 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27017 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27018 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27018 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27019 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27019 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27020 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27020 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27030 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27030 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27021 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27021 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27031 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27031 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27022 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27022 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 52001 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 52001 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27032 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27032 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27033 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27033 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27035 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27035 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27036 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27036 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27037 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27037 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27038 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27038 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27039 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27039 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27041 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27041 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27042 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27042 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27043 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27043 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27044 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27044 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27045 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27045 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 27046 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27046 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = ssh -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = ssh -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = 10000 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 10000 -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = ftp-data -> 192.168.200.1
rdr on ng0 inet proto tcp from any to any port = ftp -> 192.168.200.1
rdr-anchor "imspector" all
rdr-anchor "miniupnpd" all
rdr on ste0 inet proto tcp from any to (ste0) port = 3128 -> 127.0.0.1 port 3128 -
Это Nat reflection выключен
-
Это Nat reflection выключен
А тепеьрь самое веселое….
Если я его включаю, то у меня локальные сейты так и не работают, а заодно и инет отваливается. Пока он выключен, хоть инет работает. -
Это Nat reflection выключен
А тепеьрь самое веселое….
Если я его включаю, то у меня локальные сейты так и не работают, а заодно и инет отваливается. Пока он выключен, хоть инет работает.Действительно обхохочешься -)
а можно ту же pfctl -sn с включенным Nat reflection? -
Со включеным Nat reflection
$ pfctl -sn
nat-anchor "pftpx/" all
nat-anchor "natearly/" all
nat-anchor "natrules/" all
nat on nfe0 inet from 192.168.200.0/24 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on ng0 inet from 192.168.200.0/24 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on nfe0 inet from 192.168.200.0/24 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on ng0 inet from 192.168.200.0/24 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on nfe0 inet from 192.168.200.0/24 to any -> (ng0) round-robin
nat on ng0 inet from 192.168.200.0/24 to any -> (ng0) round-robin
nat on nfe0 inet from 192.168.201.96/28 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on ng0 inet from 192.168.201.96/28 port = isakmp to any port = isakmp -> (ng0) port 500 round-robin
nat on nfe0 inet from 192.168.201.96/28 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on ng0 inet from 192.168.201.96/28 port = 5060 to any port = 5060 -> (ng0) port 5060 round-robin
nat on nfe0 inet from 192.168.201.96/28 to any -> (ng0) round-robin
nat on ng0 inet from 192.168.201.96/28 to any -> (ng0) round-robin
rdr-anchor "pftpx/" all
rdr-anchor "slb" all
rdr on ng0 inet proto tcp from any to any port = http -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = http -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = http -> 127.0.0.1 port 19000
rdr on ste0 inet proto udp from any to any port = http -> 127.0.0.1 port 19001
rdr on ng0 inet proto tcp from any to any port = 27015 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27015 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27015 -> 127.0.0.1 port 19002
rdr on ste0 inet proto udp from any to any port = 27015 -> 127.0.0.1 port 19003
rdr on ng0 inet proto tcp from any to any port = 27010 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27010 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27010 -> 127.0.0.1 port 19004
rdr on ste0 inet proto udp from any to any port = 27010 -> 127.0.0.1 port 19005
rdr on ng0 inet proto tcp from any to any port = 27011 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27011 -> 127.0.0.1 port 19006
rdr on ng0 inet proto tcp from any to any port = 27040 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27040 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27040 -> 127.0.0.1 port 19007
rdr on ste0 inet proto udp from any to any port = 27040 -> 127.0.0.1 port 19008
rdr on ng0 inet proto tcp from any to any port = 27025 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27025 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27025 -> 127.0.0.1 port 19009
rdr on ste0 inet proto udp from any to any port = 27025 -> 127.0.0.1 port 19010
rdr on ng0 inet proto tcp from any to any port = afs3-prserver -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = afs3-prserver -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = afs3-prserver -> 127.0.0.1 port 19011
rdr on ste0 inet proto udp from any to any port = afs3-prserver -> 127.0.0.1 port 19012
rdr on ng0 inet proto tcp from any to any port = 6003 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 6003 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 6003 -> 127.0.0.1 port 19013
rdr on ste0 inet proto udp from any to any port = 6003 -> 127.0.0.1 port 19014
rdr on ng0 inet proto tcp from any to any port = 27016 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27016 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27016 -> 127.0.0.1 port 19015
rdr on ste0 inet proto udp from any to any port = 27016 -> 127.0.0.1 port 19016
rdr on ng0 inet proto tcp from any to 217.197.240.43 port = 27960 -> 192.168.200.1
rdr on ng0 inet proto udp from any to 217.197.240.43 port = 27960 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to 217.197.240.43 port = 27960 -> 127.0.0.1 port 19017
rdr on ste0 inet proto udp from any to 217.197.240.43 port = 27960 -> 127.0.0.1 port 19018
rdr on ng0 inet proto tcp from any to any port = 27017 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27017 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27017 -> 127.0.0.1 port 19019
rdr on ste0 inet proto udp from any to any port = 27017 -> 127.0.0.1 port 19020
rdr on ng0 inet proto tcp from any to any port = 27018 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27018 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27018 -> 127.0.0.1 port 19021
rdr on ste0 inet proto udp from any to any port = 27018 -> 127.0.0.1 port 19022
rdr on ng0 inet proto tcp from any to any port = 27019 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27019 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27019 -> 127.0.0.1 port 19023
rdr on ste0 inet proto udp from any to any port = 27019 -> 127.0.0.1 port 19024
rdr on ng0 inet proto tcp from any to any port = 27020 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27020 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27020 -> 127.0.0.1 port 19025
rdr on ste0 inet proto udp from any to any port = 27020 -> 127.0.0.1 port 19026
rdr on ng0 inet proto tcp from any to any port = 27030 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27030 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27030 -> 127.0.0.1 port 19027
rdr on ste0 inet proto udp from any to any port = 27030 -> 127.0.0.1 port 19028
rdr on ng0 inet proto tcp from any to any port = 27021 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27021 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27021 -> 127.0.0.1 port 19029
rdr on ste0 inet proto udp from any to any port = 27021 -> 127.0.0.1 port 19030
rdr on ng0 inet proto tcp from any to any port = 27031 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27031 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27031 -> 127.0.0.1 port 19031
rdr on ste0 inet proto udp from any to any port = 27031 -> 127.0.0.1 port 19032
rdr on ng0 inet proto tcp from any to any port = 27022 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27022 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27022 -> 127.0.0.1 port 19033
rdr on ste0 inet proto udp from any to any port = 27022 -> 127.0.0.1 port 19034
rdr on ng0 inet proto tcp from any to any port = 52001 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 52001 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 52001 -> 127.0.0.1 port 19035
rdr on ste0 inet proto udp from any to any port = 52001 -> 127.0.0.1 port 19036
rdr on ng0 inet proto tcp from any to any port = 27032 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27032 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27032 -> 127.0.0.1 port 19037
rdr on ste0 inet proto udp from any to any port = 27032 -> 127.0.0.1 port 19038
rdr on ng0 inet proto tcp from any to any port = 27033 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27033 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27033 -> 127.0.0.1 port 19039
rdr on ste0 inet proto udp from any to any port = 27033 -> 127.0.0.1 port 19040
rdr on ng0 inet proto tcp from any to any port = 27035 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27035 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27035 -> 127.0.0.1 port 19041
rdr on ste0 inet proto udp from any to any port = 27035 -> 127.0.0.1 port 19042
rdr on ng0 inet proto tcp from any to any port = 27036 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27036 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27036 -> 127.0.0.1 port 19043
rdr on ste0 inet proto udp from any to any port = 27036 -> 127.0.0.1 port 19044
rdr on ng0 inet proto tcp from any to any port = 27037 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27037 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27037 -> 127.0.0.1 port 19045
rdr on ste0 inet proto udp from any to any port = 27037 -> 127.0.0.1 port 19046
rdr on ng0 inet proto tcp from any to any port = 27038 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27038 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27038 -> 127.0.0.1 port 19047
rdr on ste0 inet proto udp from any to any port = 27038 -> 127.0.0.1 port 19048
rdr on ng0 inet proto tcp from any to any port = 27039 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27039 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27039 -> 127.0.0.1 port 19049
rdr on ste0 inet proto udp from any to any port = 27039 -> 127.0.0.1 port 19050
rdr on ng0 inet proto tcp from any to any port = 27041 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27041 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27041 -> 127.0.0.1 port 19051
rdr on ste0 inet proto udp from any to any port = 27041 -> 127.0.0.1 port 19052
rdr on ng0 inet proto tcp from any to any port = 27042 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27042 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27042 -> 127.0.0.1 port 19053
rdr on ste0 inet proto udp from any to any port = 27042 -> 127.0.0.1 port 19054
rdr on ng0 inet proto tcp from any to any port = 27043 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27043 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27043 -> 127.0.0.1 port 19055
rdr on ste0 inet proto udp from any to any port = 27043 -> 127.0.0.1 port 19056
rdr on ng0 inet proto tcp from any to any port = 27044 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27044 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27044 -> 127.0.0.1 port 19057
rdr on ste0 inet proto udp from any to any port = 27044 -> 127.0.0.1 port 19058
rdr on ng0 inet proto tcp from any to any port = 27045 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27045 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27045 -> 127.0.0.1 port 19059
rdr on ste0 inet proto udp from any to any port = 27045 -> 127.0.0.1 port 19060
rdr on ng0 inet proto tcp from any to any port = 27046 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 27046 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 27046 -> 127.0.0.1 port 19061
rdr on ste0 inet proto udp from any to any port = 27046 -> 127.0.0.1 port 19062
rdr on ng0 inet proto tcp from any to any port = ssh -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = ssh -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = ssh -> 127.0.0.1 port 19063
rdr on ste0 inet proto udp from any to any port = ssh -> 127.0.0.1 port 19064
rdr on ng0 inet proto tcp from any to any port = 10000 -> 192.168.200.1
rdr on ng0 inet proto udp from any to any port = 10000 -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = 10000 -> 127.0.0.1 port 19065
rdr on ste0 inet proto udp from any to any port = 10000 -> 127.0.0.1 port 19066
rdr on ng0 inet proto tcp from any to any port = ftp-data -> 192.168.200.1
rdr on ste0 inet proto tcp from any to any port = ftp-data -> 127.0.0.1 port 19067
rdr on ng0 inet proto tcp from any to any port = ftp -> 192.168.200.1
rdr-anchor "imspector" all
rdr-anchor "miniupnpd" all
rdr on ste0 inet proto tcp from any to (ste0) port = 3128 -> 127.0.0.1 port 3128 -
Вот это правильно
-
И при этом привильном ничего не работает. Работает только в том случае если я подниму до роутера pptp соединения….
-
И при этом привильном ничего не работает. Работает только в том случае если я подниму до роутера pptp соединения….
Я не знаю, как Nat reflection может влиять на pptp. Что в логах?
-
Я не знаю, как Nat reflection может влиять на pptp. Что в логах?
Да pptp здесь непричем. Я просто на нем привел пример когда рабоать начинает.
Проблема в том что когда я включаю Nat reflection, у меня и локальные ресурсы как не работати так и не работают, да и в предачу инет отваливаливается во всей локалки. Проблема в этом.. -
Какой именно лог нужен?
-
Может у меня установленные сервисы корячутся?
siproxd Proxy for handling NAT of multiple SIP devices to a single public IP. Running
havp Antivirus HTTP proxy Service Running
ntpd NTP clock sync RunningПричем siproxd, не редактировал, оставил дефолтные настройки.
-
Какой именно лог нужен?
Status->System logs.
И когда не работает, опять netstat -rn и ifconfig