Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to configure NAT (and/or routing) to another network on LAN interface

    NAT
    1
    1
    619
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      norbi771
      last edited by

      Hello,

      I have the following setup

      WAN interface - standard
      LAN: 1 interface - 2 networks:
      a) 192.168.254.0/24 - computers in LAN
      b). 217.x.x.x/27 - VoIP telephones

      a network is NATed to the internet in the most standard way
      b network does not see the internet, just extenal VoIP provider which is hooked up into the switch with this 217.x.x.x address space.

      Both a and b networks are hooked up to the PFsense LAN interface

      Pretty recently the old router died and was replaced with PFSense 2.1 appliance

      I would like to be able to access the telephones from the computers in LAN (192.168.254.0/24)

      Before PFSense I did it in the following way using extra linux box which is in the LAN.

      
ifconfig eth0:0 217.x.x.60/27 up
iptables -t nat -A POSTROUTING -s 192.168.254.0/24 -d 217.x.x.32/27 -j MASQUERADE

      and adding extra route to my LAN machines:
      route add 217.x.x.32 … 192.168.254.201

      where .201 is linux box.

      Now the same I would like to achieve via PFSense.
      I made the alias via Firewall / Virtual IP and assigned it to LAN with address 217.x.x.60 and now I can ping telephones in 217.x.x.x network from PFSense box. Cannot force PFSense box to nat / route from 192 to 217 though. Could you advice what rules should I apply?

      Thank you in advance

      Best regards
      Norbert

      1 Reply Last reply Reply Quote 0
      • First post
        Last post