Hi, I just upgrade my home FW from a Alix-Box to a Atom-based Firewall. I downloaded the hole config.xml(with rrd) from my old firewall, changed the interfaces from vr* to em* and restored the config to the new Firewall. After the reboot to activate the new config, I did a web based update from 2.0.3-Release to 2.1-Release.
Almost everything worked fine, but my NAT Reflection does not work anymore. The NAT Rule itself works, aka. I can access the HTTPS server from the outside. My NAT Role is very simple: Interface WAN, TCP, any source, any source port, Destination is WAN Adresse, dest port https, redirect target to my internal webserver (openssl s_client worked from the FW) and redirect target port https. I tried it with NAT reflection to Enable (NAT+Proxy) and Default. There is a associated filter rule created. The same is done for ssh, but with an a high port instead of 22 on the outside. This is also not working. There are no Floating Rules, and I cleaned the Trafic Shaping, just in case. In System - Advanced Setting - Firewall / NAT - NAT there is no checkbox checked and NAT Reflection mode is set to Enable (NAT+Proxy). I don't know why it is not working, anyone a idea what I can do? tcpdump show the package arrive at pfsense, but are not redirected. Was anything changed in 2.1 about NAT Reflection, except the re-wording. I could not find it in the 2.1 Releasenotes and could not find anything in the Forum as well. Thanks for any help. CU Jens _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
