Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Bit of a strange one… Internal PC needs to access server for updates

    Scheduled Pinned Locked Moved NAT
    3 Posts 2 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bwstu
      last edited by

      Hi guys,

      I have had success here before, so here goes:

      I have a setup where I have about 50 machines behind my pfsense firewall. One of these machines hosts an update site that listens on port XYZ. External clients update fine through teh port forwards I have done. Unfortunately the software cannot be changed to allow multiple update check addresses, so teh other PC's internally need to check for their updates in teh format ip.address:PortXZY . External clients use the same update path and are fine, but internally, the requests for an update check never reach the server (I have confirmed using "wireshark").

      Any ideas what I would need to do to allow a request to go out through pfsense, and back in again and be allowed through to the server to check for updates?

      Any clarification needed, just ask :)

      Thanks!
      Stu

      1 Reply Last reply Reply Quote 0
      • chpalmerC
        chpalmer
        last edited by

        Nat Reflection

        system_advanced_firewall.php  Go down to "Disable NAT Reflection for port forwards" and uncheck.    You can also find it on individual port forwards.  Set each one as needed.

        Triggering snowflakes one by one..
        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

        1 Reply Last reply Reply Quote 0
        • B
          bwstu
          last edited by

          That is awesome!!! I adjusted it within the specific port forward and it is now working.

          Thanks very much for such quick and CORRECT advise :)

          Stu

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.