OPNsense Forum

Archive => 22.1 Legacy Series => Topic started by: mike8971267 on July 27, 2022, 09:02:38 pm

Title: Connect to WAN IP from within LAN ?
Post by: mike8971267 on July 27, 2022, 09:02:38 pm

Hey all,

Before switching from a plain home router to opnsense, I was able to connect to certain local services through my WAN IP. Now opnsense seems to be blocking that, which I'm sure is a good default. But now I'm wondering a couple things.

• What firewall rule(s) would I put in place to get that functionality back? Suppose I'm going to sit at a LAN machine and perform a connection on a dynamic DNS hostname, which will map to the WAN IP.
• Would this be considered a bad idea? A security faux paus? I admit I don't need to do this. I just sometimes check functionality from inside the LAN, but I could probably just put my laptop on a mobile hotspot and check that way instead.

Title: Re: Connect to WAN IP from within LAN ?
Post by: juere on July 28, 2022, 11:32:29 am

Access to internal services via WAN IPv4 ist usually accomplished by setting up a rule under Firewall->NAT->Port Forward.
Within this rule make shure to set "NAT reflection" to "enable", this should allow to access the service from inside the LAN.