How to configure src.nat ?



  • Hire is my Network.

    –------                                                          ---------
        PC 10.100.206.10/24------------>| Mikrotik |192.168.1.2/24>-------->192.168.1.1/24 |            |--|
                                                        | Router  |                                                        |Pfseanse |  |
                                                        ---------                                                        ---------    |
                                                                                                                <-----WAN------------

    I hav Pc with 10.100.206.10 connect to Mikrotik router.
    Mikrotik is connect to Pfsense with 192.168.1.2
    On Mikrotik I hav add rout Destination 0.0.0.0/0 Gateway 192.168.1.1
    When I add nat on mikrotik src. addres 10.100.206.0/24  src.nat 192.168.1.2 evrything is OK end i have internet on my PC.
    But my problem is thet I want to Nat pc addres on pfsense, without src. nat on mikrotik.
    Can anyone help on this problem ?





  • Yes I red this, but I did not find enithing that I needed !

    I try in nat >> outbond add Interface Wan, Source network 10.100.206.0/24
    and Rules >> Lan source network 10.100.206.0/24.

    But everything I try in  last few days  is unsuccessful !

    Can you tell me little precise what I need to do ?



  • Can you show a screenshot of your AoN rules and your LAN rules?
    What you describe seems right but maybe you have a typo or something like that.

    Did you also add a static route for the 10.100.206.x/24 subnet that points to 192.168.1.2 ?
    Otherwise pfSense doesnt know that the 10.100.206.x/24 subnet exists. (system –> static routes)



  • My problem is thet I didnt add static route.

    Scenario:
    1. I add  static route, bat everything is the same.
    2. reboot pfsense end internet is stop working.
    3. delete every nat end rules.
    4. add nat end rules the same thet I add before delete.
    5. everything is OK !!!!!!

    ;) I dont have Courage to reboot Pfsense again !

    The reason for everything is thet I want to limits numbers of connection subnet 10.100.206.0/24 .
    What is default in Firewall: Rules: Edit
    Simultaneous client connection limit
    Maximum state entries per host
    Maximum new connections / per second
    State Timeout in seconds


Locked