Port forward multiple external ips works with 2 not the 3rd
-
So I have multiple ip's from my ISP. xxx.154-xxx.158. I am hosting 3 websites. I have 2 working using port forwarding.
xxx.155:80 -> 192.168.0.51:80
xxx.156:80 -> 192.168.0.52:80
Today I'm trying to get a 3rd and it I can't seem to get it working.
xxx.157:80 -> 192.168.0.53:80
I've used package capturing and determined that the wan port is receiving packages to xxx.157 just not forwarding them on.
Does anyone know what could be causing this. I'm using the latest 2.0 RC1 downloaded 2 days ago -
@dko:
So I have multiple ip's from my ISP. xxx.154-xxx.158. I am hosting 3 websites. I have 2 working using port forwarding.
xxx.155:80 -> 192.168.0.51:80
xxx.156:80 -> 192.168.0.52:80
Today I'm trying to get a 3rd and it I can't seem to get it working.
xxx.157:80 -> 192.168.0.53:80
I've used package capturing and determined that the wan port is receiving packages to xxx.157 just not forwarding them on.
Does anyone know what could be causing this. I'm using the latest 2.0 RC1 downloaded 2 days agoAre you using 1:1 nat for your public ips to map to your webservers?
-
Do a full detail packet capture for traffic to .156, note the destination MAC address. Do the capture again for .157, check the destination MAC again. If you are using proxy arp VIPs, it should be the same. If you are using CARP VIPs, it should be a CARP MAC.
I saw this the other day when an ISP router had a cached ARP entry for a different device on an IP that wasn't working. Power cycled the CPE and all was well.
-
@dko:
So I have multiple ip's from my ISP. xxx.154-xxx.158. I am hosting 3 websites. I have 2 working using port forwarding.
xxx.155:80 -> 192.168.0.51:80
xxx.156:80 -> 192.168.0.52:80
Today I'm trying to get a 3rd and it I can't seem to get it working.
xxx.157:80 -> 192.168.0.53:80
I've used package capturing and determined that the wan port is receiving packages to xxx.157 just not forwarding them on.
Does anyone know what could be causing this. I'm using the latest 2.0 RC1 downloaded 2 days agoAre you using 1:1 nat for your public ips to map to your webservers?
I was never able to get 1:1 NAT working at all it is just port forwards on 80
-
Still need a guide for 1:1 NAT for multi public IP's on PFSense 2.0?
-
-
@dko:
Still need a guide for 1:1 NAT for multi public IP's on PFSense 2.0?
Yes please
OK, Gimme a little while and i will put something together. This guide is based on what i have seen in the pfsense forums and method by which i was able to get this working for me, it might not necessarily be the 'official' way, but seems to work. Also, it may also depend on how your ISP routes your IPs to you. I am with BE Unlimited and they seem to route the IP addresses right to my router which is in bridged mode routing the 8x static public IPs to various firewalls/pfsense with virtual ip configuration.
-
If this helps this is the package capture
03:01:25.506028 ARP, Request who-has xxx.156 tell xxx.153, length 46
Repeat a few more times -
I currently have a video tutorial uploading to YouTube as we speak, i hope this can help some people
