OPNsense Forum

English Forums => General Discussion => Topic started by: alfemann on October 03, 2017, 09:30:29 pm

Title: One-to-one NAT or just port forwarding
Post by: alfemann on October 03, 2017, 09:30:29 pm

I have seen variations of this question, but I really cannot see that hey have been answered to a degree that I can understand how to set it up.

I have a /27 of public addresses say 199.199.199.34 .. .62
On the inside I use 10.10.10.0/24.

I have some servers running on the inside, and need to expose various ports on public IPs.
First off ; am I better off using Port forwarding, or one-to-one NAT and fw-rules ?
It seemed the port forwarding worked fine until I had 3-4 rules with some of the same ports (but on different public IPs of course) - then it just didnt work like I thought.

If I need to use one-to-one NAT - can someone please give me a blow-by-blow ? I cannot wrap my head around it.

Title: Re: One-to-one NAT or just port forwarding
Post by: amitis5 on May 27, 2019, 07:59:05 am

I am in exact same scenario and can't seem to find the answer. 

I have four servers I need to expose, and I have a pool of 30 IPs from the ISP.  I've setup virtual IPs, and can't seem to get the 1:1 working correctly.