NAT from WAN to a IP in outbound

josea.guardia

Hello.

My LAN (192.168.1.0/24) has a PPP to 172.17.4.0/24. PFSense server IP is 192.168.1.1

I want publish a webpage to everyone in a server of 172.17.4.0 LAN, and I've configured it in NAT section, however it doesn't work.

If I do the same with a 192.168.1.0 network, it connects from internet to the local server.

In NAT->Outbound I've this rules:

OpenVPN  10.1.0.0/24 * 172.17.4.0/24 * 192.168.1.1 * NO

In NAT->Port Fordward

WAN TCP * * * 1180 172.17.4.40 80

How can I setting this up?

Thank you in advanced.

Regards.

KOM

You don't use outbound NAT for port forwards.  If I understand you, you want to make the server at 172.17.4.40 accessible to everyone on the Internet?  You need one NAT Port Forward rule and one firewall rule.

https://doc.pfsense.org/index.php/How_can_I_forward_ports_with_pfSense

https://doc.pfsense.org/index.php/Port_Forward_Troubleshooting

josea.guardia

@KOM:

You don't use outbound NAT for port forwards.  If I understand you, you want to make the server at 172.17.4.40 accessible to everyone on the Internet?  You need one NAT Port Forward rule and one firewall rule.

https://doc.pfsense.org/index.php/How_can_I_forward_ports_with_pfSense

https://doc.pfsense.org/index.php/Port_Forward_Troubleshooting

Hi,

I don't use outbound to port triggering. My LAN network is 192.168.1.0/24 and that rule is a point to point access via VPN to the network 172.17.4.0/24.

The PF Firewall is in the 192.168.1.0, and I want to redirect traffic from WAN to a host in the PPP network.

Thanks!

KOM

OK I understand now and my previous advice still applies.  It should be one NAT rule (port forward) to expose the server on VPN to WAN, and one firewall rule to allow the traffic to flow.  That's it.