I've built a 2 node WRAP cluster - works fine.
I can't get the services (HTTP, SMTP etc) exposed to the internet via the VIP
WAN VIP: 18.104.22.168/24
LAN VIP: 192.168.1.70/24
LAN Firewall rule: I haven't touched this.
Default LAN -> any
I've added a WAN firewall rule to allow all to destination 192.168.1.12 port 80
Advanced Outbound NAT Rule:
Destination Port: *
NAT Address: 22.214.171.124
NAT Port: *
Port Forward Rule:
Ext. Port Range: 80
NAT IP: 192.168.1.12 (ext.: 126.96.36.199)
Int. Port Range: 80
CARP sync's ok. Ping to each WAN IP works but ping to WAN VIP loses some (not all) packets.
Do I need a LAN firewall rule?
Pointers to get this working would be much appreciated.