OPNsense Forum

English Forums => General Discussion => Topic started by: stuffedroll on July 20, 2019, 11:36:39 am

Title: 1:1 and WAN FW rules Issues
Post by: stuffedroll on July 20, 2019, 11:36:39 am

HI all,

I have just moved from PFsense to Opnsense. The transition is not at clear as I would like it to be. I am having is issues trying to Open HTTPS to a VIP that I am 1:1 NAT set up for. The Web server sits on my DMZ.

I have a range of External IP's that are routed by my ISP to my WAN IP.

So hopefully for context this helps. So external IP *.*.*124 this has been set a VIP (See Below)

(https://i.ibb.co/GtSLLBv/2019-07-20-10-27-54-Settings-Virtual-IPs-Firewall-oz-fw-01-ozzytech-co-uk.png) (https://ibb.co/LJ7WWbz)


I have set up the 1:1 Nat from *.*.*.124 to 10.10.10.10 (See below)

(https://i.ibb.co/tDypsWK/2019-07-20-10-30-24-One-to-One-NAT-Firewall-oz-fw-01-ozzytech-co-uk.png) (https://ibb.co/BB82ZS3)

I have opened https on the WAN interface to 10.10.10 (See below)

(https://i.ibb.co/PQVxf5C/2019-07-20-10-31-53-WAN-Rules-Firewall-oz-fw-01-ozzytech-co-uk.png) (https://ibb.co/fvTMPC0)

Here is my DMZ Rules.

(https://i.ibb.co/VDgQ08s/2019-07-20-10-32-09-DMZ-Rules-Firewall-oz-fw-01-ozzytech-co-uk.png) (https://ibb.co/wCSwZ1f)

Any advice would be appreciated.

Title: Re: 1:1 and WAN FW rules Issues
Post by: ursus on August 17, 2019, 09:54:23 pm

Hi

I have exactly the same problem as you -> did you ever find a way to get this to work? I have tried everything but it just will not work.

I am not quite sure why a "normal" NAT rule would not work here -> source would be the virtual IP, dest your web server? I tried it, doesn't work!

Thank you in advance
Ursus

Title: Re: 1:1 and WAN FW rules Issues
Post by: ursus on August 18, 2019, 10:46:19 am

https://forum.opnsense.org/index.php?topic=13865.0