Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Routing Problem

    Scheduled Pinned Locked Moved Routing and Multi WAN
    3 Posts 3 Posters 913 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nand7
      last edited by

      Hello everyone,

      I have a routing problem. That should be very simple. But I`m trying days to get this simple problem fixed with no luck.

      I have three machines at my Xencenter

      Server1
      V-ETH-Interface IP: 192.168.13.14
      Service Samba running on Ports 137-140

      PFsense FW
      re1/WAN Interface
      V-ETH-Interface IP: 192.168.13.13

      re0/LAN Interface
      V-ETH-Interface>2< IP: 192.168.12.16

      Windows 7 Client
      V-ETH-Interface>2< IP: 192.168.12.13

      I want to connect to the 192.168.12.16 IP Adress to access the windows share that is running on Server1.
      \192.168.12.16

      But this does not work. I tried soo many things. Port Forward, 1:1, Outbound(automatic, manual). Firewall Rules from WAN to LAN and LAN to WAN…
      I really dont know how to get this to work. I hope someone can help me out. (I connected the V-ETH-Interface to the Windows 7 to test if Samba works, and it is working, then I disconnected it)

      The Web Interface works @ 192.168.12.16 on the Windows 7 Client.

      Thanks for youre help.

      greetings Nand

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        I cannot see what your setup will be good for. But that is your business.

        The most likely mistake that is made in such setups is to forget to remove the check "Block private networks" on WAN interface tab.
        Your WAN is in a private network. So check this out, please.

        1 Reply Last reply Reply Quote 0
        • V
          verigoth
          last edited by

          After you verify you aren't blocking private networks you need to set up port forwards for TCP and UDP for ports 137, 138, 139, and 445. Do not use 1:1 on your WAN IP that is meant to be used with an IP alias. You will also need make rules for all of the forwards on the WAN interface to the internal private IP (192.168.13.14) or check the box to do it automatically when you create the port forwards.

          I just reread your original post and it looks like you're doing it backwards. Your LAN and WAN interfaces are switched around. You should be able to connect directly from the windows pc to the server using it's own address with the default LAN to any rule. Is there any particular reason you're doing this? Typically port forwards are to allow external access to internal resources (which you shouldn't do with Windows shares anyway).

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.