I got it to work, but did NOT use Proxy ARP. Just
used the 1:1 NAT.
------------------------------------------------------------
Jason J Ellingson
Jason J Ellingson
From: Simon SZE-To [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 28, 2005 9:43 PM
To: [email protected]
Subject: [pfSense Support] 1:1 NAT loopback
I had read the thread at Aug 26 and found that some pfSense's user able to access 1:1 NATTed service in LAN segment, but when I try it today, it's failed.
My testing environment:
- the public IP xx.xx.xx.46 1:1 NAT to 10.0.138.9
- proxy ARP the xx.xx.xx.46
- allow any to any access to xx.xx.xx.46 in firewall rule
- my workstation IP is 10.0.138.130
- pfSense's IP is xx.xx.xx.42
I did the following steps:
- telnet xx.xx.xx.46 110 (of cos. I have POP3 service listening)
- I've got connection failed after around 20sec
- the states got the following 2 lines:
self tcp 10.0.138.130:1941 -> xx.xx.xx.42:51404 -> xx.xx.xx.46:110 SYN_SENT:CLOSED
self tcp xx.xx.xx.46:110 <- 10.0.138.130:1941 CLOSED:SYN_SENT
Thanks!
Simon SZE-To
