-
-
Notifications
You must be signed in to change notification settings - Fork 259
pfSense
To use a pfSense with OpenMPTCProuter, 2 choices :
- dual NAT: not the best design but simpler, let pfSense do all the routing and NATing stuff
- routing without NAT on pfSense: a little more complicated, port forwarding and NATing is only done on OMR
On pfSense, add a WAN interface with OpenMPTCProuter as the default gateway. By default, pfSense will NAT to OpenMPTCProuter.
If you need port forwarding, in OpenMPTCProuter, redirect ports 1-64999 from vpn zone to lan zone, to pfSense WAN IP. Do the actual port forwarding on pfSense.
On pfSense, add a WAN interface with OMR as the default gateway and disable Outbound NAT. On OpenMPTCProuter, add static route(s) to your LAN network(s).
If you need port forwarding, redirect the needed ports to the target LAN hosts on OpenMPTCProuter, then add a Pass WAN firewall rule on pfSense to allow inbound traffic to the target host and port.
Source: https://github.com/Ysurac/openmptcprouter/issues/1132#issuecomment-672755457