Rdr-to rules in PFSense



  • Good morning.  I'm trying to force all the clients on my lan  to use my local DNS and NTP servers.  I've been trying unsuccessfully to create some PF rules for a couple of days.  I've been working in Firewall:NAT:Port Forward UI, but I can't figure out how to make the redirect look.

    This is what the rule looks like in OpenBSD.

    pass in on $int_if inet proto { tcp udp } from any to ! 192.168.1.1 port 53 rdr-to 192.168.1.1
    

  • Banned



  • Thanks.



  • Is there a different setup for this in pfsense 2.2?  I'm trying to redirect outbound traffic on UDP port 123 (NTP) to my pfsense box.  I noticed I have a bunch of devices with hardcoded NTP servers in them, and my emerging threats rules occasionally block them (a couple of the NTP servers are in the compromised list).

    I did exactly what was described above, except I changed it to UDP port 123, and under the "NAT reflection" I selected "Enable-Pure NAT."



  • Jake-

    Were you able to get this to work?  I still can't get NTP redirection working.