Project

General

Profile

Bug #3346

1:1 NAT rule (w/ VIP) breaks connectivity to WAN

Added by Matt Deering almost 6 years ago. Updated almost 6 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Rules / NAT
Target version:
-
Start date:
11/29/2013
Due date:
% Done:

0%

Estimated time:
Affected Version:
2.1
Affected Architecture:

Description

Clean installation on a computer, setup default gateway, dhcp and set up basic internet connectivity, no packages, nothing.

VM (or computer) internal IP: 192.168.10.18
External IP: 50.242.64.21

VIP gets created (50.242.64.21/32)
VM (linux, or computer, windows) can still connect to WAN
1:1 NAT rule gets created to map external IP to internal IP, WAN connection is broken. Internal communication still works. If there's a diagnostic or somesuch I can provide, let me know.

VIP Rule screenshot and 1:1 NAT rule screenshot attached.
No floating firewall rules, I can setup this machine on another IP and give someone a login if they want to take a look as well.

This works fine on a ALIX board I have, but I installed pfsense on an old gateway machine with a realtek NIC and a separate Intel NIC I got and it doesn't seem to work.

Version: 2.1-RELEASE (i386)

11natrule.JPG (107 KB) 11natrule.JPG Matt Deering, 11/29/2013 01:47 AM
vipconfig.JPG (118 KB) vipconfig.JPG Matt Deering, 11/29/2013 01:47 AM

History

#1 Updated by Matt Deering almost 6 years ago

To note: I've tried taking the backup from the alix board and applying it to the new machine (intel motherboard), and this also does not work.

#2 Updated by Chris Buechler almost 6 years ago

  • Status changed from New to Rejected

1:1 NAT works fine, sounds like you have an issue with your upstream ARP cache.

Also available in: Atom PDF