Use WAN portforwardings to DMZ from LAN..possible? - SOLVED
-
Hi
I'm quite new at pfsense and have a setup with a lot portforwarding rules from WAN to DMZ. But we need access to the same rules when using LAN…now i have created a double set of portforwarding rules but it's a mess to handle...ain't there any other way to do this easy?
WAN: xxx.xxx.xxx.0
LAN: yyy.yyy.yyy.0
DMZ: zzz.zzz.zzz.0Forwarding rules:
xxx.xxx.xxx.1:80 -> zzz.zzz.zzz.1:80 (Listening on WAN)
xxx.xxx.xxx.2:80 -> zzz.zzz.zzz.1:81 (Listening on WAN)This works fine when connecting from the outside (WAN), but when on the LAN it doesn't work, so i created these, but i'd like to drop them:
xxx.xxx.xxx.1:80 -> zzz.zzz.zzz.1:80 (Listening on LAN)
xxx.xxx.xxx.2:80 -> zzz.zzz.zzz.1:81 (Listening on LAN)/Anders Kvist
-
Is "NAT reflection" under system–>advanced activated? (checkbox unchecked)
-
Ah! That might do the trick…will check up on it tomorrow.
Are there a fixed MAX at 500 rules after which nat reflection doesn't work anymore or is it an approx value where it starts to lower performance?
/Anders Kvist
-
It worked, thanks :)
