WAN forward to LAN



  • Good morning,
    i have installed pfsense with 2 eth:

    1. LAN (10.0.1.173)
    2. WAN (10.30.30.1) with dhcp server enabled to release address to wifi network.

    From a machine in WAN network (ip released: 10.30.30.251) i ping the pfsense.
    Here my problems:

    1)I need to ping all the machine in LAN side (ex: 10.0.1.6, 10.0.1.5, ecc)
    2)I need to allow machine in WAN to navigate to internet (at this time i can't ping 8.8.8.8 "google dns")

    Can some one help me with a step-by-step guide to configure firewall, nat ecc…

    Thank you....



  • It's not clear from your post everything you are trying to do.

    @yayo78:

    1)I need to ping all the machine in LAN side (ex: 10.0.1.6, 10.0.1.5, ecc)

    If you want every host on the LAN to be pingable from the WAN then you probably want to turn off NAT, see here:

    http://doc.pfsense.org/index.php/How_can_I_completely_disable_NAT%3F

    and create some pass rules on the WAN interface to allow it (or disable pf altogether if that's what you want).

    2)I need to allow machine in WAN to navigate to internet (at this time i can't ping 8.8.8.8 "google dns")

    In a typical setup a host on pfsense's WAN would not be accessing the internet through pfsense, however it is possible. In any case, the host must have a default route through a valid gateway.

    Can some one help me with a step-by-step guide to configure firewall, nat ecc…

    That is exactly the purpose of the excellent documentation found here:

    http://doc.pfsense.org/index.php/Main_Page

    For us to be able to help you it is best if you would search the docs for the ones that apply to what it is that you are trying to do, and then if you are stuck on some particular point, ask in the appropriate forum about the detail that is giving you trouble. The best place to start is probably here:

    http://www.catb.org/~esr/faqs/smart-questions.html


Log in to reply