OPNsense Forum

Archive => 19.7 Legacy Series => Topic started by: loganx1121 on October 12, 2019, 06:07:11 am

Title: Port forward help?
Post by: loganx1121 on October 12, 2019, 06:07:11 am

Can someone explain why this isn't working? I have an openfire XMPP server running on 10.5.7.18 which needs port 5222 forearded. I followed the following guide:

https://forum.opnsense.org/index.php?topic=8783.0

I went to Firewall > Settings > Advanced and enabled "Reflection for port forwards" and "Automatic outbound NAT for reflection". I also tried with these disabled.

It auto created the firewall rule when I did this, but the chat server is still not functioning.

Title: Re: Port forward help?
Post by: loganx1121 on October 12, 2019, 01:28:56 pm

Update: So it looks like the port forward IS actually working, it's just not working for me from inside the LAN. If I change the target server in the chat client from the DDNS address that everyone outside uses, to the IP of the XMPP server, then it works. I've never had to do that before though. I've always just left the DDNS URL as the target and it has always worked. I'm not using DDNS on the firewall, it's a separate service I have.  

Title: Re: Port forward help?
Post by: vladyslavm on March 03, 2020, 12:27:51 pm

I'm setting the same for the LAN, and also can't get it to work. Though without portforwarding, as I think it doesn't need that inside the lan. Did you manage to make it work?

Title: Re: Port forward help?
Post by: mehdi_fa on March 03, 2020, 06:26:14 pm

hi there !

if your dns entry is a public ip record, then you need to add a port forward from your lan to catch the public ip and redirect it to your lan

lan_computer -> public_ip_service -> opnsense_nat_from_lan_interface -> internal_ip_service