Playing arround with NAT, advanced outbound NAT, Virtual IPs and Rules.
I'm trying to open FTP and SMTP port in my firewall and redirect to my
internal server and still won't work.
Outgoing Connection to single WAN is working, but Incoming Connection is
zero.
It seems more easy with iptables command than pfsense's webGUI, but
iptables didn't support multiple WANs (AFAIK).
Need help here.
Agi Subagio wrote:
Hi,
Before I use pfsense, I already use iptables on Linux, smoothwall and
zyxel firewall.
But I must control 3 firewalls at the same time and is not so easy.
I see pfSense can provide multiple WAN, so I'm trying pfSense Beta 1
in my machine.
My machine have 6 NICs and probed by pfSense as: nve0, ste0, ste1,
ste2, ste3 and wb0.
My LAN IP is 172.16.4.0/16
My WAN IP are:
- WAN #1: 203.77.230.xxx/29
- WAN #2: 202.169.57.xxx/29
- WAN #3: 202.159.10.xxx/29
I assign the IP and interface like these:
- nve0 as LAN with IP 172.16.4.254
- ste0 as WAN with IP 203.77.230.1 (example)
- ste1 as WAN2 with IP 202.169.57.1 (example)
- ste2 as WAN3 with IP 202.159.10.1 (example)
I want to add another IP alias like these:
- nve0 -> 172.16.4.17, 172.16.4.7, 172.16.4.38
- ste0 -> 203.77.230.2, 203.77.230.3 (example)
- ste1 -> 202.169.57.2, 202.169.57.2 (example)
- ste2 -> 202.159.10.2, 202.159.10.3 (example)
I have some server in my internal network to be accessed from external
network, for example:
- FTP, SSH, DNS, HTTP from IP 172.16.4.52
- SMTP, POP3, Webmail from IP 172.16.4.53
In the future, I want to make a failover pfSense firewall also using wb0.
The questions are:
- How to make IP aliases?
- How to allow incoming connection to internal server for those
internet service?
- How to make Outgoing Load Balancing from internal network?
- How to make Internal Load Balancing from external network?
- How to make Failover pfSense firewall?
regards,
Agi
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]