Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Inbound – Ountbound

    Scheduled Pinned Locked Moved Firewalling
    13 Posts 5 Posters 15.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      fellesnelle
      last edited by

      Hi,
      How do I setup my pfsense that will allow me to acces my WAN adres from the inside of my network.
      Example:
      LAN: 192.168.0.1
      WAN: 80.81.82.83
      From LAN I like to ping, browse and IMAP to WAN.

      Can someone help me?

      1 Reply Last reply Reply Quote 0
      • P
        Perry
        last edited by

        With the default lan rule you should be able to ping your wan address.
        Post a diagram of your setup as it always helps ppl seeing what you want to do.

        /Perry
        doc.pfsense.org

        1 Reply Last reply Reply Quote 0
        • Cry HavokC
          Cry Havok
          last edited by

          ISTR that what you're looking for is called "NAT Reflection":

          http://forum.pfsense.org/index.php/topic,7817.0.html

          1 Reply Last reply Reply Quote 0
          • F
            fellesnelle
            last edited by

            I've tried to disable ""Disable NAT Reflection" and this is my result.

            When I browse to my WAN URL (by example) http://80.81.82.83 then I get the login screen of my ADSL-router. When I try to connect my OWA https://80.81.82.83/exchange then I get an error by the proxy I think.

            "Connection to 80.81.82.83 faild"
            The system returnd:
            (61) Connection refused

            Any idea what I should do?

            1 Reply Last reply Reply Quote 0
            • GruensFroeschliG
              GruensFroeschli
              last edited by

              umm…
              You're using double NAT, are you?
              something like this:

              (public IP))          (private IP)                (private IP)
              internet --------- Modem-------------- pfSense --------------clients

              You have to put your modem into bridging mode.
              So you have a public IP on the WAN of your pfSense.

              The other solution is you set up split DNS.
              Go to the DNS forwarder config and add the adress you have on the WAN and set the IP to which you want to be redirected.

              We do what we must, because we can.

              Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

              1 Reply Last reply Reply Quote 0
              • F
                fellesnelle
                last edited by

                Hi

                "the other solution" with a split DNS won't work.
                I recveive the same error.
                Later this day I will try to put my modem into bridging mode, when everyone is out of office, otherwise my phone wan't stop to riiiiiing  ;D

                1 Reply Last reply Reply Quote 0
                • GruensFroeschliG
                  GruensFroeschli
                  last edited by

                  "the other solution" with a split DNS won't work.
                  I recveive the same error.

                  What do you mean it wont work?
                  Did you try?
                  Can you show a screenshot of what you entered?
                  I have this exact same setup here at my home (my modem doesnt provide bridging functionality)

                  We do what we must, because we can.

                  Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

                  1 Reply Last reply Reply Quote 0
                  • F
                    fellesnelle
                    last edited by

                    Yes, I've tried.

                    Here is a prtscr:

                    ![dns forwarder.jpg_thumb](/public/imported_attachments/1/dns forwarder.jpg_thumb)
                    ![dns forwarder.jpg](/public/imported_attachments/1/dns forwarder.jpg)

                    1 Reply Last reply Reply Quote 0
                    • GruensFroeschliG
                      GruensFroeschli
                      last edited by

                      Your entry is wrong.

                      Look at the screenshots i attached.

                      Also make sure your clients use pfSense as primary DNS

                      general.JPG
                      general.JPG_thumb
                      forward.JPG
                      forward.JPG_thumb

                      We do what we must, because we can.

                      Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

                      1 Reply Last reply Reply Quote 0
                      • F
                        fellesnelle
                        last edited by

                        Sorry, I still don't get it working.

                        I've setup the things like you posted (naturraly with mine issues)

                        But I've a question about it. I don't have ore use a subdomain to access my OWA.
                        Normaly I can put the WAN address of my modem in the Domain tab of the General Setup. , isn't.
                        Then I put in de Domain colom of the DNS Forwarder that WAN address. Will this then work or what shud I prepare.
                        I still hope to find a solution.

                        If you still can help me out with this. ???

                        1 Reply Last reply Reply Quote 0
                        • GruensFroeschliG
                          GruensFroeschli
                          last edited by

                          @fellesnelle:

                          Normaly I can put the WAN address of my modem in the Domain tab of the General Setup. , isn't.

                          No.
                          What you set here is the domain name you actually have on the WAN.
                          If you dont have a name just set it to something like "local" or "myLAN".
                          This name will be assigned as the domain to the clients that get their DHCP lease from pfSense.
                          Dont put numbers/IP's here.

                          Then I put in de Domain colom of the DNS Forwarder that WAN address. Will this then work or what shud I prepare.

                          Yes you put what you entered under domain in the general section here.
                          The IP field is the IP of your server.
                          The Host field can be left empty.

                          In my example: i have the domain "psymia.mine.nu".
                          If i enter "psymia.mine.nu" in firefox i access my server on 10.0.0.10.

                          I added a second entry with as host www:
                          If i enter "www.psymia.mine.nu" in firefox i access my server on 10.0.0.10.

                          We do what we must, because we can.

                          Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

                          1 Reply Last reply Reply Quote 0
                          • F
                            fellesnelle
                            last edited by

                            Ok, know I understand a bit how its working and know its almost working.

                            When I fild in IE https://myserver.local/exchange then I receive my login of OWA.
                            So if I create a subdomein on my hosted domainame then I can use that inside our outside my network.
                            Inside it will then rerouted to my server.

                            What I know try to do is connect a IMAP profile to my smartphone that I can sync Inside (LAN) and Outside (Internet) my network.

                            Ik think that this will be the solution. Thanks for your patience  ;)

                            1 Reply Last reply Reply Quote 0
                            • N
                              Nostradamus
                              last edited by

                              @GruensFroeschli:

                              Your entry is wrong.

                              Look at the screenshots i attached.

                              Also make sure your clients use pfSense as primary DNS

                              @GruensFroeschli

                              Thank you soooooo much. I have been trying to figured out why i didn't see my own web server ;)

                              1.2-RELEASE
                              built on Fri Mar 7 18:49:15 EST 2008
                              Intel Celeron 1100 Mhz
                              512MB PC-100
                              Segate 20GB HD
                              eth0: Intel 82801BA/BAM/CA/CAM 10/100 (WAN)
                              eth1: 3Com 3c905C-TX/TX-M 10/100 (LAN)

                              1 Reply Last reply Reply Quote 0
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.