External ips and internal ips

TestUser007

HI, im using pf sense for some time now and it works GREAT!
Till now i had 1 static IP…
Now i got 2 additional static IPS...and now the things get interesting :)
I have set virtual IPS and changed outbound rules.....
my local server have local IP addres...
Ping/wget workgs ok....
When i wget some page that resolves my IP i see my external IP is (one of the two new IPS)
BUT
I want to install DirectAdmin and have some problems...
Seems like my external IP is still the 1 old one....
Can anyone help me?

Metu69salemi

make us picture where you show your topology with internal addresses, don't show full public ip's
some screenshots from rules will help also

TestUser007

Have attached the diagram… it simple :)
OK...
the external IP i have for some time...
Server A is working for a good year now... PERFECT!!
NOW i have additional 2 external IPs and i want to setup a webserver, becouse i want to have my websites on it
What i want to do?
on Server B i want to install directadmin (cpanel) for hosting....
The thing is i don't know how to make the configuration to work :)
i have:

setup virtual ips
set NAT rulles
set port forwarding rulles

diagram.gif_thumb

virtual_ip.gif_thumb

firewall_rulles.gif_thumb

port_forwarding.gif_thumb

Metu69salemi

I prefer carp or virtual ip's

but your picture also showed, that you have dmz on new server. do you want to have dmz or is that intended ip to use from wan side?

Create virtual ip's
Create manual outbound nat rules

from your new server ip to anywhere with intended outside ip-address
do this same with any ip you want
last rule is the default any, so this is the ip what any else clients is using

Create portforwards
Test from outside network if you're able to do it

TestUser007

@Metu69salemi:

I prefer carp or virtual ip's
but your picture also showed, that you have dmz on new server. do you want to have dmz or is that intended ip to use from wan side?

Create virtual ip's

Create manual outbound nat rules

from your new server ip to anywhere with intended outside ip-address

do this same with any ip you want

last rule is the default any, so this is the ip what any else clients is using

Create portforwards

Test from outside network if you're able to do it

hmmmm no i don't want dmz….
have upgradet PfSense to newer version...
now this is my setup
but... it's still not working like i want it to ::)

nat_port_forwarding.gif_thumb
nat_outbound.gif_thumb

Metu69salemi

@TestUser007:

but… it's still not working like i want it to ::)

In what parts?

TestUser007

@Metu69salemi:

@TestUser007:

but… it's still not working like i want it to ::)

In what parts?

It's all good… my lack of knowledge..... thanx for help!
Working superb!

Metu69salemi

Then you can edit first posts subject with [SOLVED]