Messages

1

22.7 Legacy Series / Re: nat for some internal ip's is not working

« on: January 05, 2023, 09:14:09 pm »

When i go to Firewall => States, I see the following:

Code: [Select]

int pro source nat dest State Rule
all udp 123.123.123.123:13331 10.132.0.17:13231 MULTIPLE:MULTIPLE let out anything from firewall host itself
all udp 123.123.123.123:13331 123.123.123.123:13231 10.132.0.17:13231 NO_TRAFFIC:SINGLE

One thing I can do to make a particular connection working, is to delete the state and hope for it to work.

This issue has become a problem and we are probably replacing the OPNsense Firewall Router with another Router.

2

22.7 Legacy Series / Re: nat for some internal ip's is not working

« on: December 07, 2022, 12:34:24 pm »

I'm having a very similar issue.

udp port forward rule mapping some external WAN port to an internal LAN address.
in sessions: Instead of using the established connection the router tries to send the package directly out the WAN interface bypassing the OUTBOUND NAT, and not using the already established session.

I did the thing you suggested and it fixed it temporarily. But when the session dies I have the same issue again.

Something with connection tracking in the opnsense seams not to be working correctly.