Double NAT & routing issues
-
I'm rebuilding my home lab and usually I haven't run into any issues but for some reason this time I am.
WAN–->Router(192.168.1.1)--->(192.168.1.2)pfsense(192.168.2.1)--->TestSystem(192.168.2.5)
The TestSystem can see 2.1 and 1.2 but cannot see 1.1. From another host on the 192.168.1.1/24 network I can ping the gateway.
-
I think if u creat a 1:1 to the the subnet to the other subnet it should work
-
What do you mean with "see" and there is no need for NAT and NAT is not the solution.
by default every client (TestSystem) should be able by default to connect to WAN and the 192.168.1.0/24 subnet if not blocked by pfsense firewall.
If you mean connection from WAN or from 192.168.1.0/24 subnet to your 192.168.2.0/subnet - ok - then you need PortForwarding or 1 : 1 NAT
More information about firewall rules, gateways, etc. will offer you better answers and solutions.
-
Sounds like you're not really double NATing, and the 1.1 box doesn't have a route back to 192.168.2.0/24 via 192.168.1.2.
-
After pulling the blocking rules I can now reach the box from the 1.0/24 subnet but the 2.0/24 network cannot talk back. Though the 2.0/24 network is listed on the "LAN" side of the firewall and configured to allow everything.
Also per cmd my issue is a single, not double NAT currently.
-
LAN rules have nothing to do with communicating WAN side to LAN side, that's WAN rules. You didn't mention if you added the required static route on 1.1, guessing you're still missing that.