[Chester LUG] Port forwarding to pfSense for VPN
Michael Crilly
mrcrilly at gmail.com
Tue Oct 8 22:14:21 UTC 2013
Hi,
The port forwarding should work fine. Just make sure the internal system as
a non-DHCP assigned IP in case it cycles.
The dynamic IP issue can be resolved in multiple ways. You can use a
service like dynamic DNS or you can do what I do, and run a cron job from
an internal server which executes a Python script. This script then calls
icanhazip.com (curl -4s icanhazip.com for your IPv4 address, for example)
and then updates a DNS record's A record via the Gandi(.net) API, but only
if the IP has changed. With a very low TTL, this effectively eliminates the
dynamic IP issue.
Use a dynamic DNS/no-IP service will work fine in conjunction with port
forwarding as long as your forwarding rules don't rely on the external IP
being a specific value.
Hope this helps.
-MC
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/chester/attachments/20131008/34f01fa4/attachment.html>
More information about the Chester
mailing list