PfSense 2.1 NAT port forwarding not working

  • Hi everyone,

    I've some trouble getting port forwarding work on my firewall.
    I'm using 2.1 beta because of my mainboard, 2.0.3 doesn't recognize my 2 Nic's but 2.1 does so I can't  test with 2.0.3.

    This is what I have in the NAT Port forward
    WAN TCP * 12345 LAN address 12345 12345 Vivotek

    And this in the rule
    IPv4 TCP * 12345 12345 * none   NAT Vivotek

    Can someone please tell what's wrong in my config?
    Internally I can connect to the device without any problem.
    It works when I replace my pfsense system with my Vigor router/firewall that has the same port forward rule.

    thank you in advance.

  • Specifying a Source Port in a NAT or Firewall Rule is almost always a mistake. Leave that set to * (Any).

  • Hi gderf,

    I did this yesterday because it says 'should usually be 'any'' but it doesn't work.
    I changed it back to any now but still having the same problem, in the log I can see it is blocked it says
    "@3 block drop in log inet all label "Default deny rule IPv4"

    WAN TCP * * LAN address 12345 12345 Vivotek

  • Try setting the NAT like this:

    WAN TCP * * WAN address 12345 12345

    Try setting the Firewall Rule like this if not automatically added by the NAT:

    TCP * * 12345 * none

  • That's the solution, thanks a lot!!! Changing Lan address to WAN address directly worked  ;)

  • Hi Folks,

    I need help.

    I have PfSense 2.0.3.

    I'm Trying to configure Port Forwarding.

    Could you please share doc or url .


  • Rebel Alliance

  • @gderf OMG thank you so much, I've been struggling with this for weeks trying to get this to work correctly !

Log in to reply