Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
"Forwarding" a port directly to OPNsense
« previous
next »
Print
Pages: [
1
]
Author
Topic: "Forwarding" a port directly to OPNsense (Read 4048 times)
jcdick1
Newbie
Posts: 36
Karma: 1
"Forwarding" a port directly to OPNsense
«
on:
September 06, 2019, 01:55:14 am »
I am trying to get a reverse proxy running on OPNsense, but I need to point 80 and 443 on the WAN interface to it. I currently have two WAN firewall rules that are simply Source: WAN IP and Destination This Firewall for port ranges HTTP and HTTPS.
I just get timeouts when I attempt to connect from outside my home network.
Any help would be appreciated.
Logged
tong2x
Full Member
Posts: 223
Karma: 9
Re: "Forwarding" a port directly to OPNsense
«
Reply #1 on:
September 06, 2019, 02:02:47 am »
what is your setup?
do you have a modem before your opnsense server? is it in route or bridge mode?
maybe you can show a network diagram, so it would be faster
to use forwarding, you goto
Firewall->NAT->port forward
Logged
jcdick1
Newbie
Posts: 36
Karma: 1
Re: "Forwarding" a port directly to OPNsense
«
Reply #2 on:
September 06, 2019, 02:27:15 am »
I do have a "modem" before OPNsense, in "passthrough" mode so that the OPNsense WAN interface gets the WAN IP. Port forwarding to other machines behind OPNsense works just fine. I just can't seem to get traffic coming in on port 80 or 443 to get to the service running directly on OPNsense.
Logged
banym
Sr. Member
Posts: 468
Karma: 31
Free Human Being, FreeBSD, Linux and Mac nerd
Re: "Forwarding" a port directly to OPNsense
«
Reply #3 on:
September 06, 2019, 10:36:40 am »
you can do a packet capture on the WAN interface to check if the packages reach your firewall.
If they do, check your rules on WAN to see if you have incoming traffic for that rules.
If the opnsense itself hosts the reverse proxy you don't need NAT rules you should have only roules on WAN interface to allow incomming.
The service needs to be up and running and you should check if you don't have binding problems.
For example you maybe need to move the administration port to something different than 80 and 443 to be able to use these ports for your reverse proxy.
Regards,
Dominik
Logged
Twitter: banym
Mastodon: banym@bsd.network
Blog:
https://www.banym.de
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
"Forwarding" a port directly to OPNsense