Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Mod_security: rules and forwards?

    pfSense Packages
    2
    3
    1257
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tlum last edited by

      This should be easy. I'm trying to use mod_security to proxy http traffic to back-end servers.

      What I'm never clear on is how to configure the firewall rules and NAT port forwards, especially when the service resides on the firewall its self. For example what would the rule look like that passes traffic in to the proxy? Is there anything required in order for the proxy to reach the back-end server?

      1 Reply Last reply Reply Quote 0
      • marcelloc
        marcelloc last edited by

        You do not need Nat, just change pfsense gui port, configure apache on 80 and allow it's traffic using firewall rules on wan interface.

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • T
          tlum last edited by

          Well, didn't really answer the critical part of the question, but I seemed to have figured it out.

          The rule should allow all source IP, all sorce port to the public IP the proxy is listening on as the destination IP with a destination port of 80.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy