Network Address Translation¶
Network Address Translation (NAT) refers to the process of modifying network address information contained in datagram packet headers while they are in transit, generally across a device or system similar to pfSense, in order to map an address on one subnet to an address on another.
In practice the most common use of NAT is to allow a private LAN to communicate with the public Internet (outbound NAT) and to allow access to servers on the private LAN from the Internet (port forwards).
A more detailed discussion of NAT is available in the Wikipedia article on NAT.
The NAT settings in pfSense are accessed via the Firewall > NAT menu in the WebGUI.
Configuration of NAT in pfSense is categorized into four areas: Port Forwards, 1:1 (One to One) NAT, Outbound NAT, and NPt (Network Prefix Translation) for IPv6
- Forwarding Ports with pfSense
- 1:1 NAT
- Port Forward and 1:1 NAT Interaction
- Outbound NAT
- Using Static Port with Outbound NAT
- Automatic NAT Rules Generation
- Advanced Outbound NAT
- Configuring NAT for a VoIP PBX
- Configuring NAT for VoIP Phones
- Using IPv6 Network Prefix Translation (NPt)
- Accessing Port Forwards from Local Networks
- Using 1:1 NAT on a WAN IP Address
- Setup ftp server behind pfSense
- Using NAT and FTP without a Proxy
- Troubleshooting Port Forwards
- Troubleshooting 1:1 NAT
- Troubleshooting NAT Reflection