pfsense firewall/NAT rules for 2 different LAN where LAN2 has public facing server

RangeyRover

7/4/24, 11:55 AM

I'm looking for a pfsense ruleset that allows a client on LAN1 192.168.3.10 to access a public server on LAN2 10.0.0.2. ports 60000 -60015 TCP/UDP. I otherwise wish to keep these LAN's isolated from each other. Current WAN ruleset, working well from external WAN. I have tried NAT reflection, I think it does not work as they are on separate LAN. Any ideas how I can accomplish this? It's weird as other services also running on LAN2 10.0.0.2, like a small webservice to configure the server in question run just fine and can be accessed from LAN1. WAN Ruleset

Network topology Current Network Topology

1 + 0

firewall

nat

pfsense

Score:0

Server

RangeyRover

7/5/24, 3:31 AM

Ok, I seem to have resolved this issue, I still think it's not the most elegant way, so any answers appreciated. This rule never worked though even after resetting state tables. I'd left the rule on, then a pfsense firewall reboot to move the firewall saw it working. on LAN1

Interface:LAN1 IPV4
Protocol: TCP/UDP
Source:LAN1 net Destination:
WAN net Port Range: 60000 - 60015

+ 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: pfsense firewall/NAT rules for 2 different LAN where LAN2 has public facing server

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.