NAT in a bridge mode

alfinux

Dear all,

I have configured pfsense as a bridge. Can I combined bridge with NAT function? I want to make DMZ.
My configuration can be seen from picture below.
![pfsense bridge firewall.PNG](/public/imported_attachments/1/pfsense bridge firewall.PNG)
![pfsense bridge firewall.PNG_thumb](/public/imported_attachments/1/pfsense bridge firewall.PNG_thumb)

chpalmer

Will your servers have public IP addresses or do you plan to NAT them?

alfinux

@chpalmer:

Will your servers have public IP addresses or do you plan to NAT them?

Some servers will have public IP address, and some server will be NATed thru LAN interface.

chpalmer

In order to NAT some and Bridge some you will need to split them.

opt1 bridge

opt2 NAT

LAN private for desktops.

You will need to port forward to any servers on OPT2

You will need a public IP for the pfsense box and 1 for every box behind the bridge.