Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    NAT the same port for all gateways

    Scheduled Pinned Locked Moved NAT
    7 Posts 2 Posters 2.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      costasppc
      last edited by

      Hello,

      I do not know how to set this correctly (may be it silly), but I need to have a port forwarded to an internal machine from all the available WANs.

      Maybe it can be done by NATing the port to a WAN group, and if from outside they select the WAN1 or WAN2, then the NAT will occur from this WAN.

      I am trying to make a "WAN failover" from outside networks.

      Best regards

      Kostas

      1 Reply Last reply Reply Quote 0
      • M
        Metu69salemi
        last edited by

        1. Create host alias, with your public ip's
        2. Create port forward rule with this alias as destination

        But how the nat work with this, don't know

        1 Reply Last reply Reply Quote 0
        • C
          costasppc
          last edited by

          Thank you.

          But why destination? It is inbound NAT. I just need to make sure that if one of the WANs is down, the clients from outside the network can use the other to access a service inside the company (like ex. a web server).

          They can use either: server1.company.com -> WAN IP of WAN1 -> inbound NAT port 80 to internal server
          server2.company.com -> WAN IP of WAN2 -> inbound NAT port 80 to internal server

          Best regards

          Kostas

          1 Reply Last reply Reply Quote 0
          • M
            Metu69salemi
            last edited by

            Destination because:
            Source, from where you can connect and this rule is valid
            Destination, what ip's you listen
            Redirect: to where this trafic is sent

            That's why i mentioned, that your public ip alias should be at destination.

            1 Reply Last reply Reply Quote 0
            • C
              costasppc
              last edited by

              Thank you, I see the point.

              Do I have to create outbound NAT rules for every inbound one?

              Regards

              Kostas

              1 Reply Last reply Reply Quote 0
              • M
                Metu69salemi
                last edited by

                I think that pfsense knows where to send trafic, but test it. if only one ip is working in bothways then you need manual outbound nats

                1 Reply Last reply Reply Quote 0
                • C
                  costasppc
                  last edited by

                  Thank you very much for your help.

                  I have created a test rule based on instructions found in Docs, and it works OK, it just required a reboot of the Alix to work.

                  I will post back if any other problem occur.

                  Best

                  Kostas

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.