On Fri, Jan 9, 2009 at 3:15 AM, Peter Todorov <[email protected]> wrote: > Curtus, I am no so familiar with pfsense architecture to do SSh login and > manual rewriting conf files. I have NAT yes it is AON because I have dual > WAN configuration.
That's not necessary. There is very old, outdated documentation somewhere apparently that tells people to do that since it comes up repeatedly. Could you point me to where you got that info? I would like to remove incorrect information. It'll work, but it's unnecessary and a step that's frequently not configured properly. > I have only NAT between external and internal interfaces. > I add some rules to bouth interfacese in the top just for test that has * * > * * * * and * * * * * * . Still I got no ping from DMZ to LAN. > Chris, Do I need to enable NAT between DMZ and LAN? > You rarely want to NAT between internal interfaces. You shouldn't need AON at all unless you need static port. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
