Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    CARP- VIP-Loadbalancer-Outboud NAT.

    HA/CARP/VIPs
    1
    1
    831
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tholken last edited by

      Im having difficulty getting an Out bound NAT to work correctly with a CARP VIP.  What I have is a VIP assigned to a Load Balancer that is in front of two servers. what I need is for both Servers to LEAVE the pfSense using the VIP as its outbound NAT.  To make this even more difficult I have 1:1 NAT that is enabled for EACH server to facilitate monitoring.  When I try to set up the Out bound NAT the 1:1 NAT takes precedence.  How can I get the out bound NAT rule to be the one used and not the 1:1 NAT address.

      X.X.7.38  (VIP on Public Side)
                            |
                            |
                    +–--+------------------+
                    |                              |
        192.168.12.30                192.168.12.31

      I have set under Advance settings the check mark for:
        "Disables the automatic creation of additional NAT 1:1 mappings for access to 1:1 mappings of your external IP addresses from within your internal networks. Note: Reflection for 1:1 NAT might not fully work in certain complex routing scenarios."

      and Unselected the:
        "Automatically create outbound NAT rules which assist inbound NAT rules that direct traffic back out to the same subnet it originated from. "

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy