Bill Marquette said on Thursday, 28 July 2005 at 8:14 a.m: > > and forwarded port 80 to the private ip of my server's port 80. > > Port forwarding? >
The alternative is to perform 1:1 NAT and add an accept rule to the firewall for port 80, with the default being to block all. That is, unless pfSense has change a whole lot since I last installed it (It's a safe bet to say it has changed, but I don't know if 1:1 has been removed in favour of the virtual IP things) > > Was this not the procedure I was looking for? Do I instead have to > > create an 'interface' for each public ip and use the same > ethernet device for each? > > Nope, what you did sounds right. > Absolutely. There are ways of getting around these strange problems though - I'm using 1:1 NAT to do pretty much the same thing because of weirdness, and it works just fine. - William
