Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 15412 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Access Public IP from LAN network.

max d

Hi, I came from pfsense, and installed v17 of xg, so far I'm impressed, and want to know how do I access my public IP from my LAN network. So say that  I'm connected on my wifi at home and need to access my public IP to get access to my LAN resources. Not sure how to do that.

Pfsense called this NAT reflection. 

www.netgate.com/.../accessing-port-forwards-from-local-networks.html



This thread was automatically locked due to age.
  • 0

    Is this something that is not allowed in sophos or frowned upon? I can't imagine this not being an option. 

     

  • 0 in reply to max d

    Hi,

    that would be doing it the hard way. If your wifi is part of your LAN then you have access to your LAN resources, no further action required.

    If you have a seperate wifi connection then you will need a rule that allows access to the LAN from the wifi no NAT required.

    Ian

  • 0 in reply to rfcat_vk

    Thanks for the reply, but not what I'm looking for, I don't want to keep accessing my local LAN resources by changing the private IP and public domain name each time I connect to my local wifi or leave the house, I would like to have my (1) public domain name reflect back to my internal LAN if I am accessing the domain name from my LAN.

    I have for example zmNinja app on my iPhone is a NVR app, when I'm away, abroad, I access the NVR server through my domain name, when I come home and connect to wifi, the connection can't be established when trying to access the same domain name through the app. What I'm looking is something like this: 

    https://community.sophos.com/products/xg-firewall/f/network-and-routing/73239/nat-reflection

    Except I can't find Non HTTP Based policy on the latest verison of XG 17.1. Has it been moved? 

  • 0

    FINALLY.. got it figured out, here is a screen grab of the settings. 

    Create a Business Application Rule, and Application Template = DNAT/FULL NAT/Load Balancing, and match settings below.