Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PfSense Beta Feb 2011 Port Forward Breaks Connectivity

    Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
    5 Posts 3 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dunleavy
      last edited by

      Hi everyone!

      I've installed the latest RC 2.0 amd64 Beta snapshot of pfSense from February 2011.  After getting the system setup with a static IP and gateway ( it lies within my current private lan),I attempted to setup a port forward rule for VNC to a virtual CentOS server located behind the firewall.  I have created this rule probably 5 times, and after each time as soon as i click "apply" all clients behind the pfsense fw lose connectivity.  They cannot access the webgui or the internet at all.  I am forced to manually reset the firewall back to factory defaults.  Here is my rule that i'm using:

      **IF        Proto      Src. Addr     Src. Ports   Dest Addr.  Dest. Ports          Nat IP            Nat Ports  **
      WAN      TCP           *               *           LAN subnet            VNC (5900)      10.10.10.20        5901

      I have also tried to set the Dest Addr as WAN with no luck.  Any insight as to what i'm doing wrong with this rule?  I've set this up on a build the same way at home on an older RC of 2.0 and had no issues.

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Why such an old snapshot? There are more current snapshots, from today even.

        http://snapshots.pfsense.org/FreeBSD_RELENG_8_1/amd64/pfSense_HEAD/livecd_installer/?C=M;O=D
        http://snapshots.pfsense.org/FreeBSD_RELENG_8_1/amd64/pfSense_HEAD/updates/?C=M;O=D

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by

          Your dest address would not be lan subnet, it would be your WAN address, then your firewall rule would be setup for your lan IP to allow.  Here is example of port forward for ssh to my ubuntu box behind my 2.0 RC1 box

          I also wonder why such an old release - if was a clean new install why would you not of grab the current iso?

          firewallrules-nat.jpg
          firewallrules-nat.jpg_thumb
          natrule.jpg
          natrule.jpg_thumb

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • D
            dunleavy
            last edited by

            Thank you both for the assistance.  I ended up reinstalling to a newer snapshot and and reconfiguring with the WAN address as the destination.  Whatever was the issue is now resolved.  By the way Jim, excellent job on the Definitive Guide to pfSense!!  Is there going to be a new release for the 2.0 version?

            1 Reply Last reply Reply Quote 0
            • jimpJ
              jimp Rebel Alliance Developer Netgate
              last edited by

              Thanks :-)

              Yes there will be another book, we've made a little progress on it lately but it will be a while before it's out.

              Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

              Need help fast? Netgate Global Support!

              Do not Chat/PM for help!

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.