Netgate SG-1000 microFirewall

Author Topic: Inbound port forwarding with Dual Lan Setup?  (Read 2463 times)

0 Members and 1 Guest are viewing this topic.

Offline rneily

  • Jr. Member
  • **
  • Posts: 51
  • Karma: +0/-0
    • View Profile
Inbound port forwarding with Dual Lan Setup?
« on: September 22, 2006, 07:22:05 am »

I have been searching on this, but I havnt found an answer.

I have a Dual Lan Pfense box setup like this:

WAN --->  PfSense --> LAN (192.168.0.1/24)
                     |
                      -> OPT1 (Wireless 192.168.1.1/24)

I have some ports forwards setup just fine from the public ip on WAN to the LAN subnet, but for the life of me, I cant get a port forward setup to go from the WAN Public IP to the OPT1 interface?  Anything special I need to do here?   

I've setup the port forwards just like the working ones going from WAN to LAN, and I have checked the firewall rules to log.  I can see the packets being logged as accepted in the firewall logs?  Anything I am missing here?

Offline hoba

  • Hero Member
  • *****
  • Posts: 5837
  • Karma: +8/-0
  • What was the problem to this solution again?
    • View Profile
    • pfSense
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #1 on: September 22, 2006, 07:58:09 am »
Nothing special here. It just works if it's set up correctly. Show us your portforwardrules, your firewallrules and tell us what version you are on.

Offline rneily

  • Jr. Member
  • **
  • Posts: 51
  • Karma: +0/-0
    • View Profile
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #2 on: September 22, 2006, 02:53:55 pm »

I am running RC2.  Whats the easiest way to post my portforward rules and firewall rules?  Just post the XML that backup/restore spits out?

Offline rneily

  • Jr. Member
  • **
  • Posts: 51
  • Karma: +0/-0
    • View Profile
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #3 on: September 22, 2006, 04:17:46 pm »

After screwing around with it a little bit more, I realized that I have captive portal running on the OPT1 interface.  If I turn captive portal off, the NAT seems to work.

Any way to have Captive Portal and NAT working on the same subnet?  I saw there is an option to traffic to/from an IP address is captive portal, would that allow this to work? 

Offline hoba

  • Hero Member
  • *****
  • Posts: 5837
  • Karma: +8/-0
  • What was the problem to this solution again?
    • View Profile
    • pfSense
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #4 on: September 22, 2006, 06:11:56 pm »
It should work if you add your nat destinations as passthrough IPs or macs.

Offline rneily

  • Jr. Member
  • **
  • Posts: 51
  • Karma: +0/-0
    • View Profile
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #5 on: September 22, 2006, 06:54:56 pm »

Destinations are passthru MAC's so I am not sure what could be up... Let me know if I can post any info.

Offline hoba

  • Hero Member
  • *****
  • Posts: 5837
  • Karma: +8/-0
  • What was the problem to this solution again?
    • View Profile
    • pfSense
Re: Inbound port forwarding with Dual Lan Setup?
« Reply #6 on: September 23, 2006, 03:22:29 pm »
Try to add pass through IPs for these hosts as well.