OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: XOIIO on November 05, 2018, 11:19:00 am

Title: Port forwarding for hosted website on port 80 not working 100% (teamspeak too)
Post by: XOIIO on November 05, 2018, 11:19:00 am

Hey all, so another hiccup I've ran into with opnsense so far is for a website that I host, I set up the port forwarding for it in the same manner I did for other things like my sftp server, and it works, but not quite right.

I can no longer access the website on my lan by typing the url in like I could previously, I have to go to the virtual machine's IP address.

I also noticed that it was inconsistent as to whether or not putting http:// in front of the url would allow access or not, often timing out without using it, but it would work with it. The website also worked fine directly typing the IP in.

I noticed a lot of random connects and instant disconnects though and tried hidemyass, and I noticed that from other countries (my cell phone does work) the url does not work but the ip address does, and I have my dns service pointing to the right one. With or without http:// in the url, I couldn't connect.

I changed the management port to 440 for opnsense and disabled the browser redirect as mentioned in some other threads, but nothing seems to be getting this to work quite right as it had been when I was just using the isp provided router.

Here are the settings for port forwarding, I'm hoping to get this fixed asap. Unfortunately I'm at a dead end.

(https://i.imgur.com/LmGo21H.jpg)
(https://i.imgur.com/UIMBoty.jpg)
(https://i.imgur.com/LFk10nw.jpg)

Title: Re: Port forwarding for hosted website on port 80 not working 100%
Post by: XOIIO on November 05, 2018, 11:22:53 am

Damnit, it looks like according to uptimerobot my teamspeak isn't accessible properly either.

(https://i.imgur.com/H19Rj2S.jpg)

Title: Re: Port forwarding for hosted website on port 80 not working 100% (teamspeak too)
Post by: XOIIO on November 05, 2018, 12:04:42 pm

Looks like I'm getting a "default deny rule" entry in the firewall log, whenever I see a connection to the website I'm hosting, now I have to figure out how to edit or disable this rule.

(https://i.imgur.com/i93O3QJ.jpg)
(https://i.imgur.com/rNtMfnd.jpg)

Title: Re: Port forwarding for hosted website on port 80 not working 100% (teamspeak too)
Post by: XOIIO on November 05, 2018, 12:25:49 pm

The floating firewall rules look a lot more inline with what I've done on the consumer router, even though a post about NAT port forwarding is the first one that comes up.

Set up like this looks like how it should work to me, however I'm still not getting the results I want, but I think a floating rule and just the right setup for it will have me golden.

(https://i.imgur.com/X6WUJQ6.jpg)

I'm ridiculously tired though and need to sleep, hopefully someone else can share shots of their config here so that I can fix it before work.