Hello everyone, I have been struggling with the pfSense configuration for a while now, but haven't be able to create a working solution.
We would like to use a pfSense firewall to protect our internet-accessible IP range, say 82.94.x.y. I want to be able to define rules about who can access what port and what server (i.e., most of our current machines should be reached only by a small number of our customers on port 80 and 3389, the rest of the Internet must be blocked). Because of the number of incoming and outgoing connections I would prefer not to use NAT, so each machine has its own 82.94.x.y address, and pfSense would have to route the incoming packets to the proper machines. This implies my WAN interface would be, for example, 82.94.0.1, and my LAN side would have 82.94.0.2, my first server would have 82.94.0.3 and so on. However, when I set these values, I'm unable to ping the LAN interface, cannot access the config page, etc. All traffic is blocked, and PING and other requests to the LAN Side don't even show up in the filter log, but they do show up in the pftop option. I just found out that when I plug both the LAN and WAN into the same switch, the LAN side *is* accessible! Can anyone tell me if what I want is possible, and if so, how to configure it? Thanks in advance! Regards, Jelmer Baas _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
