Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Accessing Comcast Modem Remotely through firewall | Reward

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 931 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mdmogren
      last edited by

      So you guys are probably familiar, but you can access a Comcast Modem at http://10.1.10.1 from your LAN, even when you have a static IP configured.
      I am trying to figure out how to do this remotely. I basically want to port forward via NAT but need the redirect to go to back to the WAN port instead of the LAN.
      Has anyone figured this out? Any ideas?

      This works out of the box with DD-WRT but not with PFSense.
      I tried a simple static route but that didn't seem to make a difference.

      $10 via Paypal for a working solution :)

      Thanks!

      1 Reply Last reply Reply Quote 0
      • N
        NOYB
        last edited by

        Would by chance is the "Block private networks" enabled on the WAN?

        If so you might try disabling it.

        Block private networks
        When set, this option blocks traffic from IP addresses that are reserved for private networks as per RFC 1918 (10/8, 172.16/12, 192.168/16) as well as loopback addresses (127/8).  You should generally leave this option turned on, unless your WAN network lies in such a private address space, too.

        1 Reply Last reply Reply Quote 0
        • M
          mdmogren
          last edited by

          Good suggestion but tried that, no dice.

          1 Reply Last reply Reply Quote 0
          • P
            phil.davis
            last edited by

            For front-end devices like this they are not going to have routes back to places inside your network that you might be coming from. So I put Outbound NAT into hybrid mode and add a rule that has all the source subnets that I ever come from and NATs those out WAN. That way if I come via some site-to-site OpenVPN links, road warrior OpenVPN or… I always get NAT applied out to the WAN. The front-end device sees the connection coming from pfSense WAN IP and can respond to that.
            Screen shot attached from my home system (that has a bunch of rubbish subnets from testing various VLAN crud... over time, I should clean up one day)

            Hybrid-Outbound-NAT.png
            Hybrid-Outbound-NAT.png_thumb

            As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
            If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.