Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    1:1 NAT outbound traffic (newbie)

    Scheduled Pinned Locked Moved NAT
    6 Posts 3 Posters 3.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      heureka
      last edited by

      Hi!

      I have added a 1:1 NAT for my web server
      WAN  83.140.x.x/32  192.168.x.x/32

      … and a rule to permit incoming http requests
      TCP  *  *  192.168.x.x  80 (HTTP)  *

      But I cannot access Internet from my web server. Isn't it covered by the  Default LAN -> any rule?

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        Is this the real WAN IP? Or do you try to make use of an additional IP? In that case you need to create a VIP at your WAN first for the additional IP before you can NAT it.

        1 Reply Last reply Reply Quote 0
        • H
          heureka
          last edited by

          No this is a Proxy ARP VIP. The incoming http traffic rule is working, but I can't access Internet from the web server.

          1 Reply Last reply Reply Quote 0
          • H
            hoba
            last edited by

            What's in front of your WAN (pfSense NIC)? Gateway at the server is correct? So clients coming from externally do see the http page it hosts? DNS is correct and working on the server?

            1 Reply Last reply Reply Quote 0
            • H
              heureka
              last edited by

              Clients coming from externally do see the http pages. All LAN hosts have Internet access except the 1:1 NAT:ed server. If I use port fowarding instead of 1:1 NAT everything works as expected and the server has Internet access. But I would like the 1:1 NAT:ed setup.

              1 Reply Last reply Reply Quote 0
              • G
                gtarhannon
                last edited by

                I experience the same issue with 1:1 NAT, regardless of whatever I try under pfsense 1.01.  Any ideas how I might go about troubleshooting this issue?

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.