NAT + Vonage: Port forwarding not working

Jamerz · Jul 5, 2007, 9:14 AM

I have someone using Vonage on my network, so I have two port forwards for it: 5160 and a range of 10000-20000. Vonage appears to be working and traffic shaping seems to be prioritizing the traffic properly.

I have more NAT port forwards that are not working.. I try to forward 3389 (MS RDP), 22 (ssh), and many others. Even rules made from UPnP do not work! Whats going on?!

grep -i nat /tmp/rules.debug

nat-anchor "pftpx/"
nat-anchor "natearly/"
nat-anchor "natrules/*"

Outbound NAT rules

nat on $wan from 192.168.1.0/24 port 500 to any port 500 -> (xl1) port 500
nat on $wan from 192.168.1.0/24 port 5060 to any port 5060 -> (xl1) port 5060
nat on $wan from 192.168.1.0/24 to any -> (xl1)

NAT Inbound Redirects

NAT Reflection rules

pass in quick on $wan proto { tcp udp } from any to { 192.168.1.200 } port = 5160 keep state queue (qwandef, qwanacks) label "USER_RULE: NAT "
pass in quick on $wan proto { tcp udp } from any to { 192.168.1.200 } port 9999 >< 20001 keep state queue (qwandef, qwanacks) label "USER_RULE: NAT Mike's Linksys/Vonage Router"
pass in quick on $wan proto tcp from any to { 192.168.1.32 } port = 3389 keep state queue (qwandef, qwanacks) label "USER_RULE: NAT "
pass in quick on $wan proto tcp from any to { 192.168.1.220 } port = 6122 keep state queue (qwandef, qwanacks) label "USER_RULE: NAT Smokey's FreeBSD VM"
pass in quick on $wan proto tcp from any to { 192.168.1.50 } port = 22 keep state queue (qwandef, qwanacks) label "USER_RULE: NAT SSH to Blackbox"

Cry Havok · Jul 5, 2007, 10:29 AM

Details of the version of pfSense you're using would be rather useful…

sullrich · Jul 5, 2007, 4:08 PM

Search the forum for static port.