Route/nat a specific subnet

  • Hi all,

    i am having problem with routing traffic that is not a part of the pfsense lan network.  i have attached a diagram of the lab network.
    my goal for this lab is to forward traffic of the tmg internal lan to pfsense router which will send it to the internet. however the router

    keeps dropping the traffic. if i set the tmg sever to nat traffic coming from it's internal network this will work. but that's not what i want to accomplish.
    please anyone assist me with this.


  • LAYER 8 Netgate


    make a gateway for
    create a route for with that gateway as the gateway and LAN as the interface

    You'll need to be sure the firewall rules on LAN will pass traffic sourced from "LAN net" ( and, probably destination any any if you don't have specific requirements.

    Then you'll need to switch to manual outbound NAT in Firewall->NAT.  When you do that you will see two rules with source addresses from  Duplicate them for

    You'll have to do whatever on the TMG to make it pass traffic.  You also  want all NAT turned off on the TMG.  You want traffic from behind the TMG to hit pfSense LAN with a source address in

    And you're done.

  • Thanks much it's working great!!!!

Log in to reply