QUESTION: I've always assumed that Manual Outbound NAT rules are applied in the top-to-bottom order they are listed via Firewall -> NAT -> Outbound but, given some of the strange routing behaviors I get when I turn off some of the WANs, I'm wondering whether that's a valid assumption ... is it/are they?
Specifically, is the following configuration "OK" ... seems to work but I'm a little leery of the overlapping NAT rules (may be related to my "Loss of webConfigurator access when disabling WANs" posting.) OBJECTIVE: The Goal is to support the multiple domains via a single multi-WAN pfSense box and a single web/mail/etc. server and have the server reside on the LAN and behind the firewall, since it also performs other duties. CONFIGURATION INFO: - pfSense 1.2 Config with 5 WANs: see screenshots at http://www.derman.com/Misc/router/pfSense.html - 5 static IPs from DSL assigned via DHCP via 1 device (WANS -> switch -> DSL modem) where each static IP corresponds to a separate domain - 2 of the static IPs are on 1 subnet and 3 are on a different subnet ... this means that the WANs use only 2 next-hop routers at the ISP for all 5 WANs so "...suppress ARP messages when interfaces share the same physical network" is checked - IPs 172.16.10.4-5-6-7-22 are all on 1 server/1 NIC (1 IP + 4 alias IPs) and the web server's vhost config is based upon the 172.16.10.4-5-6-7 IPs -- ----------------------------------------------- Bryan Derman Derman Enterprises Incorporated http://www.derman.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
