Make Port forward work from LAN -> WAN -> LAN



  • Hello
    I have several websites setup on my public ip address. DNS is hosted by my ISP, so all my sites are created on an external DNS server. They point to my WAN interface. Then I port forward port 80 to my internal webserver. This works fine from outside, but it does not work from LAN. It seems requesting a webpage from LAN to the WAN address will not port forward correctly. (this worked on my previos firewall, Endian, so I assume it is a setting missing).

    I have solved it temporarily by making my own DNS settings.
    But the problem arises when I start using SSH+SVN. Then the SSH complain that the fingerprint do not match anymore, when I come on the outside. I would like my public SVN server to be accessable the same way from outside and from inside (both going through my WAN interface and the port forwarded to my server on LAN).

    Is this possible?

    /MartOn



  • Turn on NAT-Reflection at system>advanced (very bottom of this page).



  • @hoba:

    Turn on NAT-Reflection at system>advanced (very bottom of this page).

    I tried this, but then all my web requests are beeing redirected to my internal server.

    It seems even www.pfsense.com will be redirected to my internal web server.. Any Idea why this happens?

    /MartOn



  • OK, I found my problem.. I have pout any instead of Interface address on the NAT rule :-)

    It works now.. Thanks
    /MartOn

    @marton:

    @hoba:

    Turn on NAT-Reflection at system>advanced (very bottom of this page).

    I tried this, but then all my web requests are beeing redirected to my internal server.

    It seems even www.pfsense.com will be redirected to my internal web server.. Any Idea why this happens?

    /MartOn


Log in to reply