4. Custom nat from lan

Custom nat from lan

  • A

    i am trying to add a rule to interfaces.inc as the gui does not support it.
    where ever i add it it seems to strip out all my outbound nats

    can someone offer a solution of how or where i can put this.

    my ruleset is

    anchor "smtpredirection"
    table <smtpredirection>{  192.168.50.0/24 }
    rdr on {$lanif} proto tcp from <smtpredirection>to any port 25 -> 10.250.3.36
    nat on {$lanif} proto tcp from <smtpredirection>to any port 25 -> {$lanif}

    my syntax was

    /* anchor the outbound nat rules */
    $natrules = "# outbound email rules for spam trap\n";
    $natrules .= "table <smtpredirection>{  192.168.50.0/24 }\n";
    $natrules .= "rdr on {$lanif} proto tcp from <smtpredirection>to any port 25 -> 10.250.3.36\n";
    $natrules .= "nat on {$lanif} proto tcp from <smtpredirection>to any port 25 -> {$lanif}\n";</smtpredirection></smtpredirection></smtpredirection></smtpredirection></smtpredirection></smtpredirection>

    0
  • H

    You can setup these kind of portforwards from the gui. Set it up as portforward on interface LAN with "external adress" any.

    0
  • S

    The portforward option is in  Firewall: NAT: Port Forward

    0
  • A

    but what i want to do is this

    < 192.168.50.1/32 192.168.50.2/32 192.168.50.128/25 >

    and the rest of the clients dont get natted by the smtp rule

    0
  • H

    That is sourcebased natting which is not supported atm.

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy