Pfsense setup in a university setting

  • I am new to setting up a firewall this way. I cannot figure out the NAT or rules to use

    I am working in a University setting.

    I have one web server hosting 2 sites on 2 static ip's and
    and attached to AD so faculty can modify there personal sites on .188

    and a file server attached to an AD 2003 domain

    my pfsense box has an ext ip of with one WAN and one LAN interface

    all are on the same subnet and gateway

    the web server has one NIC with 2 internal ip's setup up static as and
    the file server has one NIC static internal

    dns and wins info comes from the university with pfsense setup as LAN gateway

    outbound the servers have no problem
    inbound there is nothing http is screwed so is network access into the servers under windows networking

    I've tried 1:1 port forwarding firewall rules nothing wants to work

    please help. I may be vague on details in this post so ask if you need more info

  • NAT will seriously break Windows LAN networking capabilities. It sounds like your servers are inside the firewall, and the users and other servers are on the WAN side. Hence NAT is occurring between them. For something like this to work, you either must use bridging, or have a routed IP subnet for your internal interfaces.

  • all of my equipment hangs off the universities main network. My 2 servers need a firewall between them and this network. so how do i go about setting up a bridge or subnet on pfsense. I am only familiar with commercial boxes and this department can't afford one of those

  • An ASCII art network diagram and exactly what you're trying to achieve (what services do you need to provide) and why you're trying to restrict access would help.

  • Hello,

    I work in a spanish University. I have a network topology like yours, with now, everything working.

    If you still need help, I can help you.


Log in to reply