circa1665 0 Posted ... Hi, I've seen several threads on this subject but none with any definitive answers or solutions. I'm on pfSense 2.4.5, and I've setup a remote port forward for 40756 I've setup an NAT port forwarding rule on pfSense as described here. Here's the rule... The TCP test on AirVPN stays grey and never turns green. I've tried deleting the remote post and creating a new on several times, I've never managed to get this to work. I have set the same port in my Torrent client, which is always reported as being closed. I wouldn't say I'm hugely technically savvy but I can usually mange to figure things out by googling for hours and reading A LOT but I'm drawing a blank here. Why doesn't this work? Here's a packet capture I did from pfSense while running the TCP test, I set it level of detail to "Full": 20:00:06.108044 AF IPv4 (2), length 80: (tos 0x0, ttl 54, id 10076, offset 0, flags [DF], proto UDP (17), length 76) 188.166.175.60.59010 > XX.XX.XXX.XX.40756: [udp sum ok] UDP, length 48 20:00:11.284073 AF IPv4 (2), length 64: (tos 0x0, ttl 54, id 5974, offset 0, flags [DF], proto TCP (6), length 60) 188.166.175.60.53688 > XX.XX.XXX.XX.40756: Flags , cksum 0xb10f (correct), seq 1850573718, win 29200, options [mss 1285,nop,nop,TS val 1356960960 ecr 0,nop,wscale 6], length 0 20:00:12.308635 AF IPv4 (2), length 64: (tos 0x0, ttl 54, id 5975, offset 0, flags [DF], proto TCP (6), length 60) 188.166.175.60.53688 > XX.XX.XXX.XX.40756: Flags , cksum 0xb00f (correct), seq 1850573718, win 29200, options [mss 1285,nop,nop,TS val 1356961216 ecr 0,nop,wscale 6], length 0 20:00:14.323413 AF IPv4 (2), length 64: (tos 0x0, ttl 54, id 5976, offset 0, flags [DF], proto TCP (6), length 60) 188.166.175.60.53688 > XX.XX.XXX.XX.40756: Flags , cksum 0xae17 (correct), seq 1850573718, win 29200, options [mss 1285,nop,nop,TS val 1356961720 ecr 0,nop,wscale 6], length 0 Anyone have any ideas? Quote Share this post Link to post
dIecbasC 38 Posted ... Try this, might helphttps://nguvu.org/pfsense/pfsense-port-forward/ Quote Share this post Link to post
circa1665 0 Posted ... Thanks @dlecbasC that’s the guide I’ve been following. Quote Share this post Link to post
dIecbasC 38 Posted ... My two immediate guesses would be I) your behind a CGNAT type WAN connection. ii) the port forward is working but the service running behind your firewall isn’t listening on that port, or is blocked. Can you show us your inbound interface firewall rules too. Quote Share this post Link to post
circa1665 0 Posted ... I'm going to post the rest of my VPN related firewall rules later (busy with work stuff right now) - hopefully that will give a complete picture. Quote Share this post Link to post
circa1665 0 Posted ... (edited) Ok here's the rest of my Firewall Rules (relating to AirVPN)... So my torrent client is part of of the vpn_redirect_group alias (on LAN) and also has it's own alias of torrent_client the port forward from AirVPN: 40756 has an alias of torrent_inbound_port. Here are my NAT port forwards: Here are my outbound rules... My LAN rules (not all of them, but showing ones related to AirVPN) Rules on VPN_WAN... Finally floating rule to prevent WAN egress... That's everything I've got, if anyone can unpick why the remote port forward isn't working that would be great. Thanks. Edited ... by circa1665 Quote Share this post Link to post
3kjh3bkjefg 0 Posted ... I have exactly the issue described above. I can't get the port forwarding to work. I see the traffic with a packet capture but my pfsense doesn't do anything with the traffic and can't find out why. Can please someone point me in the right direction? Quote Share this post Link to post
OpenSourcerer 1441 Posted ... 11 hours ago, 3kjh3bkjefg said: I have exactly the issue described above. I can't get the port forwarding to work. I see the traffic with a packet capture but my pfsense doesn't do anything with the traffic and can't find out why. Can please someone point me in the right direction? Open your own thread and append your config as pastes or screenshots. You can link to this thread to say that this problem appears similar, but don't hijack others' threads, please. 1 3kjh3bkjefg reacted to this Quote Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post