Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - Dave R

Pages: [1]
NAT / Why doesn't my Auto-created rule for LAN->WAN work in AON mode?
« on: January 03, 2018, 10:33:49 am »
I added an OpenVPN client to a VPN provider today following the guide here:

I only want HTTP,HTTPS and DNS going over the VPN interface. All other (ssh, NTP, etc) should use the WAN interface.

As I understand, when switching to AON (I was using Automatic) the automatic rules which were in effect are now applied as regular rules in the AON table.  I was not able to connect anywhere over the VPN link however. When I finally added a NAT Alias for 80,443, and 53, and applied it to a new rule (PIA VPN PORTS in the picture), then things started working again.

I noticed I cannot browse any Steam game servers however. Also, ssh access to some of my external servers is not working. I don't see in the docs ( anything about adding explicit egress ports for AON, so I must be missing something.

I noticed however that there is a rule (2nd from bottom in picture) which allows all of my internal LAN to the WAN port "auto created rule - LAN to WAN" so why isn't this rule working?

General Questions / SMTP notifications over SSL?
« on: May 27, 2017, 11:35:26 am »
First day with pfsense. I'm trying to configure SMTP notifications. My mail server is behind a NAT on and uses SSL on port 62933. I can connect to the SSL service over telnet from pfsense, but the pfsense gui says "Could not send the message to user@host.localdomin -- Error: could not connect to the host "": ??

Do I need to load the SMTP cert (self-signed) into pfsense somehow?

Pages: [1]