So I have a simple setup here:
WAN with public IP from the ISP via DHCP
LAN Address space of 10.0.0.0/16 (pfsense has 10.0.0.1)
VPN Net on 10.1.0.0/16
Statically assigned webserver running on 10.0.0.250 with port forwards for HTTP and HTTPS.
I've set the NAT to Pure and set the redirection settings as stated in this guide:
https://docs.netgate.com/pfsense/en/latest/nat/accessing-port-forwards-from-local-networks.html
Now, I know split DNS is the way to go however it wouldn't do much right now because any traffic to that webserver gets blocked by the default IPv4 deny rule.
`X Jul 16 03:55 LAN 10.0.0.250:80 10.0.1.3:45318 `
There are rules in the LAN interface of the firewall to allow all LAN traffic, and I have similar setups that don't have this issue. It's not all LAN traffic either.
I can talk to addresss on 10.0.1.x and reach it's web...
↧
pfSense blocking LAN traffic
↧