Forwarding Ports
-
I just switched to pfsense and got some stuff setup. I need the following ports forwarded (for a teamspeak i run).
Default voice port (UDP): 9987
Default filetransfer port (TCP): 30033
Default serverquery port (TCP): 10011Now i followed a tutorial for firewall - nat.
This is a screenshot of one for port 9987: Link: http://i59.tinypic.com/10oqno1.jpg
Here is my overall picture of that area… Linkl: http://i58.tinypic.com/1z3b5tv.jpg
However it doesnt seem to be working. I have setup noip under dyndns. And have the client running on the actual pc thats running teamspeak so that seems fine. I believe its the ports i may have configured wrong? either ways im unable to connect to my own teamspeak with my domain/ ip
-
If you are trying to hit it from inside the network, try turning on NAT reflection in your rules.
-
If you are trying to hit it from inside the network, try turning on NAT reflection in your rules.
You are talking to someone who just installed it like 30mins ago. Where would this option be exactly?
I've confirmed the forwarding is actually working others are able to connect (knock on wood). so this should be the solution
-
The NAT reflection is in System - Advanced - Firewall / NAT. Usually wrong solution. Plus testing anything from inside is just pointless and useless.
https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks?
P.S. Destionation address ANY is wrong as well. Should be your WAN address.
-
The NAT reflection is in System - Advanced - Firewall / NAT. Usually wrong solution. Plus testing anything from inside is just pointless and useless.
https://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks?
P.S. Destionation address ANY is wrong as well. Should be your WAN address.
Alright i enabled those options and i am able to connect. Ill change the wan address from any.
-
When doing a forward your destination should be your wan address, any not going to work. And with dok, nat reflection is pointless - I don't even see why its an option, your not actually checking that your site actually works from public side if your doing nat reflection. All your boxes inside pfsense should resolve other local boxes via their local address.
Why anyone would want to send traffic through pfsense just to got to the box sitting next to you is beyond me.. Sure not optimal performance method that is for sure.
