NAT / Routing on a filtered bridge (Production LAN & WAN) + Management LAN

cheesyboofs

Hi Guy's,

Not quite sure if this is the right forum section! The reason I have posted it here is because it may not be related to NAT at all!

I have a filtered bridge working for some time now configured thusly;

WAN & Production (LAN) -> Bridged, IP 192.168.100.254 on Bridge, No IP on LAN or Wan Interface.
Permit Rules on LAN, WAN and Bridge Interface.
DHCP serving both LAN and WAN side of the Bridge.
net.link.bridge.pfil_bridge (Set to 1)
Manual Outbound NAT rule generation (AON - Advanced Outbound NAT)

As in my thread from last year,
https://forum.pfsense.org/index.php?topic=75296.msg411660#msg411660

Now I wish to add a Management LAN to the set up so;
LAN (Production) & WAN Bridged but a New LAN (Management) that can access the Bridged network (LAN & WAN) and also the default gateway 192.168.100.1

But for some reason it is not working and I believe it may be related to NAT but if not I at least need to rule it out. I have the standard permit any any rule on all interfaces and the bridge configured as above so that just leaves routing & NAT.

How should the NAT be configured to cater for not only the LAN & WAN in bridge mode but also the new LAN interface in 'router' mode?

Many Thanks for your time.

Cheesy

cheesyboofs

Not getting anywhere fast here.

This is what I am trying to achieve;

I want to bridge WAN & LAN2 and route from LAN1 to Bridge.
When LAN1 & LAN2 are in routing mode (10.10.10.x & 10.10.20.x) it all works fine. When I bridge LAN2 & WAN (192.168.100.x REPLACING 10.10.20.x) it all goes wrong.

cheesyboofs

Please can a MOD move my thread to the NAT section - I might get more help there.

Many Thanks

rubic

full working config

cheesyboofs

@rubic:

full working config

Thank you for your response. I will try again at the weekend with the further info you have provided.

Many Thanks