Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Automatic Outbound NAT Interface Type

    Scheduled Pinned Locked Moved NAT
    2 Posts 2 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T Offline
      tobru
      last edited by

      Hi,

      I have 3 Interfaces: WAN, LAN and DMZ. The DMZ has a prefix from my provider which is routed to my pfSense box.
      When enabling Automatic Outbound NAT all servers in the DMZ are NAT-ed on pfSense. I can disable Automatic Outbound NAT and delete this rule, that works. But when I want to use that option, what can I do that everything on the DMZ Interface Subnet is not NAT-ed? In the pfSense Wiki (http://doc.pfsense.org/index.php/Outbound_NAT#Automatic_Outbound_NAT) is written: "The default "Automatic" scenario is to have all traffic that enters from a LAN (or LAN type) interface…" so is there an option to change an Interface not to be "LAN type"?

      Thanks for all help,
      Tobias

      1 Reply Last reply Reply Quote 0
      • I Offline
        inflamer
        last edited by

        Tobias,

        you can create an outbound NAT rule for your DMZ subnet and check the 'Do not NAT' checkbox at the very top of that NAT rule.

        • Andreas
        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.