Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WebServer behind PFSense

    Scheduled Pinned Locked Moved NAT
    5 Posts 2 Posters 3.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      RubenMuradyan
      last edited by

      Dear all,
      I need to make webserver, working in LAN, visible to world, through NAT.
      I've set up NAT rules (tcp80 port is forwarded from WAN interface to LAN address), and webserver is accessible through IP (WAN_interface_ip:80), so NAT operates normally.
      Then I've put A records in my DNS, pointing to WAN_interface_ip, to reach the websevers by new FQDN, and figured out, that packets are not going through pfSense box.
      Have anybody had similar situation before?
      And how can it be solved?

      1 Reply Last reply Reply Quote 0
      • M
        Metu69salemi
        last edited by

        If you have internal dns and public ip, then the easiest solution is to change the a-record to use internal ip

        or use nat-reflection(System: Advanced: Firewall and NAT)

        1 Reply Last reply Reply Quote 0
        • R
          RubenMuradyan
          last edited by

          @Metu69salemi:

          If you have internal dns and public ip, then the easiest solution is to change the a-record to use internal ip

          or use nat-reflection(System: Advanced: Firewall and NAT)

          My DNS is located outside op protected network, and I use NAT reflection, actually.
          Perhaps with some mistake - attaching screenshot.

          Clipboard01123.jpg
          Clipboard01123.jpg_thumb

          1 Reply Last reply Reply Quote 0
          • M
            Metu69salemi
            last edited by

            i don't use nat-reflection myself so it's unknown field(i'm using split-dns)

            can you provide screenshot of your portforward rules

            1 Reply Last reply Reply Quote 0
            • R
              RubenMuradyan
              last edited by

              @Metu69salemi:

              i don't use nat-reflection myself so it's unknown field(i'm using split-dns)

              can you provide screenshot of your portforward rules

              Here it is, Sir

              Clipboard24.jpg
              Clipboard24.jpg_thumb

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.