WebServer behind PFSense



  • Dear all,
    I need to make webserver, working in LAN, visible to world, through NAT.
    I've set up NAT rules (tcp80 port is forwarded from WAN interface to LAN address), and webserver is accessible through IP (WAN_interface_ip:80), so NAT operates normally.
    Then I've put A records in my DNS, pointing to WAN_interface_ip, to reach the websevers by new FQDN, and figured out, that packets are not going through pfSense box.
    Have anybody had similar situation before?
    And how can it be solved?



  • If you have internal dns and public ip, then the easiest solution is to change the a-record to use internal ip

    or use nat-reflection(System: Advanced: Firewall and NAT)



  • @Metu69salemi:

    If you have internal dns and public ip, then the easiest solution is to change the a-record to use internal ip

    or use nat-reflection(System: Advanced: Firewall and NAT)

    My DNS is located outside op protected network, and I use NAT reflection, actually.
    Perhaps with some mistake - attaching screenshot.




  • i don't use nat-reflection myself so it's unknown field(i'm using split-dns)

    can you provide screenshot of your portforward rules



  • @Metu69salemi:

    i don't use nat-reflection myself so it's unknown field(i'm using split-dns)

    can you provide screenshot of your portforward rules

    Here it is, Sir



Log in to reply