Hello Everyone. I need help and quite possibly a better understanding of why PFsense gives me an overlap error.
My client has a billing software on 3 PCs behind the PFsense firewall on the LAN network. This software must go through Port 22 to a specific address on the internet, sshftp.zirmed.com, to submit billing documents. I don't know why they must use Port 22 as I see that as a security risk. The way I set about to do this is I created an alias with the URL stated above, then created a Port Forward under NAT where I set the alias as the Source, the Redirect as a Single host on my LAN network, set the Source, Destination, and Redirect Ports as SSH, Interface as WAN, iPv4, and Protocol as TCP. Nat Reflection is enabled with NAT + Proxy.
Am I doing this correctly? If I try to copy the rule and set another Redirect IP, I get the Overlap error and cannot save the copied rule. Is there a better way to approach this? Please advise, thanks.
Also, am I safe opening Port 22 if I have SSH disabled on the PC on the LAN network?
Thanks for any assistance.