    Is it possible to forward ports between the two internal lan interfaces?    Here is what I am doing:

    WAN (Public IP Address)
    Pfsense 2.0.1-RELEASE (i386) built on Mon Dec 12 17:53:52 EST 2011
    |                                 |
    Lan                           Opt1
    10.0.0.x /17          192.168.4.x /24

    Lan/OPT1/WAN are all vlanned.   Nat is working on both Lan and OPT1.   What I would like to do is take all port 80 traffic from the Lan interface and forward it to or 3129 as I have transparent proxy setup run squid.  Is this do able?   If so how?   Also can I make it so that the address on the 10.0.0.x /17 side is not translated?

    I am running pfsense on PV box and I have pretty nice server run squid and a few other services that is why I don't use the package the come with pfsense.



  • After viewing the firewall log it says that:

    Blocked LAN TCP:R

    @1 scrub in on bge0_vlan5 all fragment reassemble
    @1 block drop in log all label "Default deny rule"

    Interestingly enough if I put my clients web browser to and us port 80 as the proxy port it works.

  • This is closed.  It is routing issue.  Learn't about my old friend TCPdump again.  :)

