Routing for pfsense and nat question



  • i have a question for pfsense.
    i have router for the example. Because i have user from 172.19.0.0/16, but my nat at 172.19.31.0/24
    when i add routing for 172.19.31.1 ( pfsense nat ) and the outside ip is 203.67.20.1,203.67.20.5 the 2 ips
    but the user at 172.19.0.0/16 can't forward from 172.19.31.1, i don't know where is the problem.
    like the pic



  • Here are a couple of ideas.

    1. Are you using a switch between pfSense and the other router. If not then you will need to use a cross over cable.

    2. Confirm that the Router WAN has an IP on the NAT network. Try to ping pfSense IP from the router.



  • @mcrane:

    Here are a couple of ideas.

    1. Are you using a switch between pfSense and the other firewall. If not then you will need one use a cross over cable.

    2. Confirm that the Router WAN has an IP on the NAT network. Try to ping pfSense IP from the router.

    1. swich to pfsense don't have any firewall.

    2. At my set the user can ping to 172.19.31.1, but can't ping to 203.67.20.1 or 203.67.20.5.

    there is setting for my pfsense
      172.19.31.0/24 to 172.19.31.254
      172.19.0.0/16 to 172.19.31.254
      0.0.0.0 203.67.20.254
      default 203.67.20.254

    i don't know how to set the rule or nat



  • Sorry I meant router rather than firewall. I've corrected it in the above post.

    Your diagram is very vague. Is the box for the NAT representing PFSense? And the router box is representing some other device?



  • Did you setup a static route at pfSense for the network beind the router? Please note that the default lan to any rule only covers your lan subnet as source. To allow other subnets you either have to add rules for it or you have to change the default lan to any rule to any to any.


Locked