Show Posts
1
General Discussion / Channel Out through A Specific WAN Interface
« on: June 25, 2020, 10:59:06 am »
Hi There.
I've been scratching my head for awhile trying to figure this out. But everything I try doesn't make any difference.
This is my setup.
OPNSense 20.1
I have 4 interfaces with external ips (WANS) and 1 interface for my LAN.
I'm using "Firewall > NAT > Port forwarding" to serve up different services.
So for arguments sake lets say I have my webmail on WAN Interface 1, My websites on WAN Interface 2, RDP Access on WAN Interface 3. Each interface has a port forward to an internal server. This all works as expected.
The Issue
The issue I have is that I cannot get the server on the LAN to talk to the internet via a specified WAN Interface. All external network traffic goes out WAN Interface 1. I don't want this in all cases. I want to be able to route traffic from a LAN server out of WAN Interface 2. So I may want my webmail to connect to the internet via WAN Interface 2, and my webserver to connect to the internet via WAN Interface 3. There for my mail server and webserver would have different external IP Addresses.
What I've tried
I've tried setting up outbound NAT. But it doesn't seem to matter what I do it doesn't make any difference. I'm always getting to the internet through WAN Interface 1. (I know this by checking my external IP Address, as each WAN Interface has it's own publicly availble IP Address).
These are the settings I've used.
Interface = LAN
Source = 192.168.0.20 (Internal Server)
Source Port = tcp/*
Destination = *
Destination Port = tcp/*
NAT Address = WAN2 (Let say ip address 10.10.1.2)
NAT Port = 0
Static Port = No
Now what happens is if I login to the server 192.168.0.20 and check my ip address I get 10.10.1.1 and not 10.10.1.2 as expected.
Have I got the wrong end of the stick here? Is outbound routing not the way to go. Any help would be greatfully recieved, I've been fiddling with this on and off for months now. And it doesn't matter what I do nothing changes.
I've been scratching my head for awhile trying to figure this out. But everything I try doesn't make any difference.
This is my setup.
OPNSense 20.1
I have 4 interfaces with external ips (WANS) and 1 interface for my LAN.
I'm using "Firewall > NAT > Port forwarding" to serve up different services.
So for arguments sake lets say I have my webmail on WAN Interface 1, My websites on WAN Interface 2, RDP Access on WAN Interface 3. Each interface has a port forward to an internal server. This all works as expected.
The Issue
The issue I have is that I cannot get the server on the LAN to talk to the internet via a specified WAN Interface. All external network traffic goes out WAN Interface 1. I don't want this in all cases. I want to be able to route traffic from a LAN server out of WAN Interface 2. So I may want my webmail to connect to the internet via WAN Interface 2, and my webserver to connect to the internet via WAN Interface 3. There for my mail server and webserver would have different external IP Addresses.
What I've tried
I've tried setting up outbound NAT. But it doesn't seem to matter what I do it doesn't make any difference. I'm always getting to the internet through WAN Interface 1. (I know this by checking my external IP Address, as each WAN Interface has it's own publicly availble IP Address).
These are the settings I've used.
Interface = LAN
Source = 192.168.0.20 (Internal Server)
Source Port = tcp/*
Destination = *
Destination Port = tcp/*
NAT Address = WAN2 (Let say ip address 10.10.1.2)
NAT Port = 0
Static Port = No
Now what happens is if I login to the server 192.168.0.20 and check my ip address I get 10.10.1.1 and not 10.10.1.2 as expected.
Have I got the wrong end of the stick here? Is outbound routing not the way to go. Any help would be greatfully recieved, I've been fiddling with this on and off for months now. And it doesn't matter what I do nothing changes.