Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: pietro87 on October 08, 2020, 10:18:51 AM

Title: access from the wan to the single IP lan
Post by: pietro87 on October 08, 2020, 10:18:51 AM

Goodmorning everyone,
i just started using opnsense.
I need to enter via public ip (static) to a specific ip of the lan that acts as a mail server. But I'm doing something wrong.

I set up a firewall rule
IPv4 TCP   *   *   WAN indirizzo   7000 (MMS/UDP)   *   *   IN_WAN

and after port-forw:
WAN   TCP   *   *   *   7000 (MMS/UDP)   192.168.1.102   443 (HTTPS)   POSTA_IN_FROM_WAN

from the firewall logs I see that I reach my public ip but I don't get an answer ....

I'm doing something wrong, it's not clear to me how to create external access to a local ip machine ... thanks for your help.
Title: Re: access from the wan to the single IP lan
Post by: bartjsmit on October 08, 2020, 01:47:07 PM
Do you have multiple public IP's? In that case you'll want to configure the mail server with a 1:1 NAT.

Since UDP has no session control, the return packets could have a public source IP that is different from the initial destination, which will confuse the client no end.

Bart...
Text only | Text with Images