Yes, I've setup NAT for TCP/UDP. No joy. Rgds, -- Pandu E Poluan
On Thu, Jan 6, 2011 at 15:22, Chris Buechler <cbuech...@gmail.com> wrote: > On Thu, Jan 6, 2011 at 12:58 AM, Pandu Poluan <pa...@poluan.info> wrote: > > Hello again! > > > > I think I'm having trouble with VIP. > > > > The scenario is this (IP addresses obfuscated): > > + WAN address is 100.2.2.8/25 > > + LAN address is 192.168.1.1/24 > > + I create a VIP, CARP, 100.2.2.9/25 > > > > Now, I tried to make a NAT: > > + 100.2.2.9:53 forwards to 192.168.1.20:53 > > + A firewall rule is automatically created > > > > However, all attempts to contact the DNS Server via 100.2.2.9:53 fail. > > > > If I try ping-ing an external IP address from the DNS Server > (192.168.1.20), > > it works. > > > > Where did I go wrong? > > > > My first guess is you chose TCP, where DNS needs TCP and UDP, primarily > UDP. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: support-unsubscr...@pfsense.com > For additional commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > >