My domain redirs to my pfsens when at home.



  • Hi

    I am fairly new to pfsense and i have to say i like it alot!

    i just keep having this strange thing that i cant get find out of…

    When i am behind my pfsense box and goto one of my domains example.com, i only get my pfsense box, not my apache install...

    Everything works like "normal" domains when im not at home, but its very bad that i cant type my domains to get to the site i want to... same with Counter-Strike Source servers, i cant connect to my public ip or domain...

    Anyone knows how to fix this?, its probably only something to tick on or off, but i cant figure it out:(

    Thanks for any help provided!

    And if someone has time, i have another performence problem: http://forum.pfsense.org/index.php/topic,34846.0.html

    thanks again

    kradalby


  • Banned

    Search NAT reflection….



  • Cant get it working, now everything times out…

    i have also tried to recreate the port forward rules, but it didnt help...

    am i doing something wrong?



  • Revert back to the config you had when you made your first post (When you were being redirected to your pfsense box)

    Then turn on NAT reflection. It's not in the firewall port-forward options but the System Advanced options.



  • The only changes i have done is unticked the nat reflection in advance… and since it now times out, i tried deleting and re-adding the portforwards... does not work...

    anything else to do?



  • @kradalby:

    The only changes i have done is unticked the nat reflection in advance… and since it now times out, i tried deleting and re-adding the portforwards... does not work...

    anything else to do?

    That's why I suggest that you revert to a previous config. You messed with working portforwards. If it were me, I would revert first. Then play with the NAT reflection.



  • But i did reverse the settings… i removed the portforward and i did add them again... that was the only thing i did before and after i turned on nat reflection...

    is it a spesific order i should do it in?



  • Maybe i'm all wrong, but what is your inner dns-server? does that know the address for you domain.com?



  • Just use split-dns, its so much easier (for me anyway!)

    http://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks%3F

    Scroll to Method 2.



  • The problem is that i have three servers, all of them are running different services, one with web, one with counterstrike etc, and they cant look at each other with external ip, and i do not use domain that much inside my own network…



  • Shouldn't your servers be using the internal addresses anyway if all of the servers are inside your local network ?



  • The servers are using internal ip, but services like the server list works with remote ip so people can connect to it, but it does not work when it cant connect to it.



  • I think that you should think about changing your game-server list to use two IP addresses, one to check the status and one to provide to the public to connect to. That's how I'd do it personally anyway.


Locked