[clug-talk] PF Sense doesn't make sense (to me)
Peter Van den Wildenbergh
peterlinuxgeek at gmail.com
Wed Aug 25 17:30:37 PDT 2010
Trying to convert a IPcop to PF Sense 2.0 (BETA 4)
My ISP (Nucleus) gave me 3 static IPs x.x.x.130, x.x.x.131 & x.x.x.132
(mask 255.255.255.224 which is a /27, right?)
I have a DMZ y.y.y.0/24 and a LAN z.z.z.5/24
Assigned x.x.x.130 to the WAN with gateway x.x.x.129
y.y.y.1 to the DMZ (OPT 1) no gateway
and z.z.z.5 to the LAN interface no gateway
I can surf the web from any LAN PC
I can surf the web from any DMZ server
(Copied the default LAN rule into DMZ)
So far so good.
The part that I am not sure about:
Added 2 virtual IPs (IP Alias)
on the WAN interface
(Tried -Proxy Arp- too )
Do I use /27 or /32, do I use Virtual IP / IP Alias or something else?
Using Firewall: NAT: Port Forward (+auto generate associated rule)
I added the following:
WAN TCP * 41243 LAN address 41243 z.z.z.205 41243
NOW... I cannot make contact when I try to telnet this port from the
I see myself coming 'in' when I use the 'Packet Capture' feature in PF
Sense, so I get 'here'
(Using friendly neighbour's wireless to test)
What am I missing to get to my server on port 41243?
I need to port fwd HTTP (80) to y.y.y.102 when it come in via x.x.x.132
I need to port fwd HTTP (80) to z.z.z.205 when it come in via x.x.x.131
How do I do that with PF Sense?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the clug-talk