1. Forum
  2. Usenet
  3. COMP.UNIX.BSD.FREEBSD.MIS

  • NATting Web Site via a FreeBSD/OpnSense firewall

    From The Doctor@21:1/5 to All on Wed May 31 14:39:34 2023
    How can this be done given your WAN IP address is a.b.c.d

    and you LAN addresses are 192.168.x.y/16 ?
    --
    Member - Liberal International This is doctor@nk.ca Ici doctor@nk.ca
    Yahweh, King & country!Never Satan President Republic!Beware AntiChrist rising! Look at Psalms 14 and 53 on Atheism https://www.empire.kred/ROOTNK?t=94a1f39b Evil exists, and it can be invented. -unknown Beware https://mindspring.com

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From The Doctor@21:1/5 to gv48@orange.fr on Thu Jun 1 12:13:53 2023
    In article <u5a0mc$2p7vd$1@dont-email.me>,
    Gilbert VAISSIERE <gv48@orange.fr> wrote:
    Le 31/05/2023 à 16:39, The Doctor a écrit :
    How can this be done given your WAN IP address is a.b.c.d

    and you LAN addresses are 192.168.x.y/16 ?

    Hello,

    If I understand your question, you need "Port forwarding" : >https://docs.opnsense.org/manual/nat.html

    Public destination address : a.b.c.d
    Public source address : any
    Public ports 80/TCP and 443/TCP
    Private destination address : 192.168.x.y (IP address of your server)
    Private ports : same as public

    You probably also need to allow incoming trafic (filtering rules) if no >automatic rules for port forwarding : >https://docs.opnsense.org/manual/firewall.html
    I don't use OpnSense and can't tell if destination address must be
    public or private (before or after NAT)


    Best regards
    Gilbert VAISSIERE

    Thank you / Merci !
    --
    Member - Liberal International This is doctor@nk.ca Ici doctor@nk.ca
    Yahweh, King & country!Never Satan President Republic!Beware AntiChrist rising! Look at Psalms 14 and 53 on Atheism https://www.empire.kred/ROOTNK?t=94a1f39b Belief changes a person, all else is just talk. -unknown Beware https://mindspring.com

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Gilbert VAISSIERE@21:1/5 to All on Thu Jun 1 13:50:35 2023
    Le 31/05/2023 à 16:39, The Doctor a écrit :
    How can this be done given your WAN IP address is a.b.c.d

    and you LAN addresses are 192.168.x.y/16 ?

    Hello,

    If I understand your question, you need "Port forwarding" : https://docs.opnsense.org/manual/nat.html

    Public destination address : a.b.c.d
    Public source address : any
    Public ports 80/TCP and 443/TCP
    Private destination address : 192.168.x.y (IP address of your server)
    Private ports : same as public

    You probably also need to allow incoming trafic (filtering rules) if no automatic rules for port forwarding : https://docs.opnsense.org/manual/firewall.html
    I don't use OpnSense and can't tell if destination address must be
    public or private (before or after NAT)


    Best regards
    Gilbert VAISSIERE

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)