Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Translating iptables -> pfsense

    Scheduled Pinned Locked Moved NAT
    3 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      itslars
      last edited by

      Hi all

      I installed Pfsenses a lot of times now and today is the day i'm lost…
      For the first time i have to use (i guess) 1to1 Nat trough a VPN connection....

      I replaced a normal Linux Firewall with the PFsense.

      On the "old" Box there are the following three (there are a few more but nearly same) iptables that needs to be "translated" to PFSense:

      iptables -t nat -I POSTROUTING -s 192.168.1.0/24 -d 987.654.183.124 -m comment --comment 'SNAT for Customer' -j SNAT --to 123.456.789.209 -m state --state NEW,RELATED,ESTABLISHED
      iptables -t nat -I PREROUTING -s 987.654.39.0/24 -d 123.456.789.210 -m comment --comment '1to1 NAT ipsec' -j NETMAP --to 192.168.1.177 -m state --state NEW,RELATED,ESTABLISHED
      iptables -t nat -I POSTROUTING -s 192.168.1.177 -d 987.654.39.0/24 -m comment --comment '1to1 NAT ipsec' -j NETMAP --to 123.456.789.210 -m state --state NEW,RELATED,ESTABLISHED

      Is there anybody out there who can tell me what to do... that would be awesome.

      1 Reply Last reply Reply Quote 0
      • G
        gslongo
        last edited by

        Interested by this too!

        1 Reply Last reply Reply Quote 0
        • G
          gslongo
          last edited by

          Found the solution in this topic : https://forum.pfsense.org/index.php?topic=43507.msg225529;topicseen#msg225529

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.