Comment on Need Support: DMZ at home with nginx proxy to LAN
teslasaur@lemmy.world 5 weeks ago
Why do you have public ip-span configured as LAN?
Comment on Need Support: DMZ at home with nginx proxy to LAN
teslasaur@lemmy.world 5 weeks ago
Why do you have public ip-span configured as LAN?
nap@sh.itjust.works 5 weeks ago
Ah sry, bad choise but i masked my real LAN IPs
teslasaur@lemmy.world 5 weeks ago
Its possible, depending on how you’ve setup your NAT, that the traffic cant return due to coming from a public ip.
nap@sh.itjust.works 5 weeks ago
There is one DNAT rule at the public OPNsense routing the HTTP/s traffic to my proxy. Inside my DMZ an LAN is no NAT, only routing. Back out again there is a Masq/SNAT rule for my local IPs
teslasaur@lemmy.world 5 weeks ago
Then i assume there is something wrong in the routes from your lan when returning traffic that got initiated through the internet opnsense. If you can see traffic hit the LAN network, all should be well on the way in.