Hi-
I'm trying to do 1:1 nat to a public IP on a public netblock that we have
(the public IP for the firewall is on the same netblock with an appropriate
hostmask set). The destination machine is on the regular LAN (not a DMZ) with
a class A private address. I've set up a 1:1 NAT rule and a virtual IP for the
destination system, but the pfsense firewall isn't performing the NAT (or
doesn't seem to). What happens is the DNAT seems to work (internal machine
gets the packet and responds), but SNAT on the tracked connection seems to fail
(src address on packets from the internal machine aren't rewritten, PFsense
drops the packet as it's not trackable (not a setup packet)).
Is there something I can do differently? This (to me) is a very mysterious
problem.
-Robin K.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
