See my follow up message. It's the SNAT directive. The tutorial I was looking at was

https://www.karlrupp.net/en/computer/nat_tutorial

Well, I'm too inexperienced with iptables to give you and advice here unfortunately.

Definitely. I assume the way to test that would be to attempt to access my router from the outside the same way I would when I log in from the inside.

Yes, connect your phone with mobile data only (no WiFi) and no VPN and you can try to browse to the admin interface on your external ip. For a more thorough test you could install Termux which will give you a Linux terminal in your phone. It comes with a built-in package manager so you can install your favourite Linux tools. You can use it to install nmap which is the defacto port scanning tool to use. The man page will give you some examples of the syntax and it will scan for open ports. It should only find your 1194 port used by OpenVPN.

/Morgan
_______________________________________________
freebsd-pf@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "freebsd-pf-unsubscr...@freebsd.org"

Reply via email to