RE: [pfSense Support] Sending traffic out a 2nd WAN interface

Ron Lemon Tue, 03 Nov 2009 06:57:07 -0800

Hi Chris and Keenan,

It is still not working so this is exactly what I have.  I don't usually
post all the live IPs but at this point I just need it to work.


Windows 2K3 Server (no firewall) 10.0.3.1

This guy needs to receive LDAP and SMPT traffic from OPT1 Interface

LAN Rules:

Proto     Source          Port     Dest            Port     GW
Sched
TCP       *               *        142.46.226.22   25       142.47.56.89
TCP       *               *        142.46.226.24   389      142.47.56.89
TCP       *               *        10.250.223.148  389      142.47.56.89
*         LAN net         *        *               *        *

OPT1 Rules:

TCP       142.46.226.24   *        10.0.3.1        389      142.47.56.89
TCP       10.250.223.148  *        10.0.3.1        389      142.47.56.89
TCP       142.46.226.22   *        10.0.3.1        25       142.47.56.89
ICMP      *               *        *               *        *
TCP       142.46.226.16   *        LAN net         *        142.47.56.89


OPT1 is on a private network with ip of 142.47.56.90/28 with GW of
142.47.56.89

>From a workstation I can successfully telnet out to 142.46.226.22:25 but I
cannot telnet to either of the 389 addresses

When they try and telnet to me I do see traffic in my FW capture from them
on OPT1 for 389 but it never gets passed to the inside machine.

This is driving me nuts and I am sure I am missing something simple, please
any help is appreciated.

-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of Chris
Buechler
Sent: Monday, November 02, 2009 9:44 PM
To: [email protected]
Subject: Re: [pfSense Support] Sending traffic out a 2nd WAN interface

On Mon, Nov 2, 2009 at 8:10 PM, Ron Lemon <[email protected]> wrote:
> Do I create this rule on the WAN or OPT tab under Firewall rules?
>

Where ever the traffic is initiated (LAN probably).

> Do I need to enable AON or should I leave automatic?
>

Automatic.

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Commercial support available - https://portal.pfsense.org

No virus found in this incoming message.
Checked by AVG - www.avg.com 
Version: 9.0.698 / Virus Database: 270.14.45/2476 - Release Date: 11/02/09
02:51:00


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Commercial support available - https://portal.pfsense.org

RE: [pfSense Support] Sending traffic out a 2nd WAN interface

Reply via email to