Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    LAN to WAN Routing (1:1 NAT)

    Scheduled Pinned Locked Moved Routing and Multi WAN
    6 Posts 3 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Bento
      last edited by

      Hi,

      We're running pfsense as a VM in a hosted VMWare ESX 4.1. It acts as a firewall and router for our VM's.

      I have a WAN3 (x.x.x.6) which has 1:1 NAT enabled to 1 specific internal machine. This machine is now reachable using the external IP specified in the 1:1 NAT rule.

      The problem is that when this machine goes on the internet (so LAN to WAN traffic) it uses the IP of the default built-in WAN (x.x.x.4) interface. So the inbound IP is different than the outbound IP.

      How do i go about and configure this? I want the machine to use the WAN3 (x.x.x.6) interface only when sending out traffic to the internet.

      Thanks,

      Bento

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by

        If you are using 1:1 NAT then it should pick up external IP for outgoing traffic. If you are in fact using port forward, then you are also going to have to setup manual outbound NAT.

        1 Reply Last reply Reply Quote 0
        • B
          Bento
          last edited by

          I am using 1:1 NAT, not port forwarding. I've tried everything but the outgoing traffic still uses another IP.

          1 Reply Last reply Reply Quote 0
          • P
            podilarius
            last edited by

            If the server has multiple IP in the LAN, it could be using the wrong one. In that case, set a metric so that it uses the correct one for outbound communications.  Check the routes on the server to confirm.

            1 Reply Last reply Reply Quote 0
            • B
              Bento
              last edited by

              We have this problem on different servers using different external IP's as well. My server only has 1 LAN IP.

              I think I will reïnstall pfSense and see how that works out.

              1 Reply Last reply Reply Quote 0
              • M
                marvosa
                last edited by

                What do you have entered for "External subnet IP"?

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.