This way internal LAN network would be able to access VM services but it will be protected from internet and OPT1 (so in case if some VM hacked, it will not be able to access LAN) In firewall rules enable passing all protocols from LAN to OPT1. This way NAT will always forward incoming connections to particular VM. I'm not sure why do you want DHCP on OPT1, but it is OK to have it as far as you use static DHCP that would glue MAC addresses of VMs to particular IP. On pfSense set NAT rules (that also automatically will create firewall rules) to forward publicly accessible ports to OPT1 network where you public services work in VM. If you have single public IP then I suggest you to use schema below. I don't know why do you want a bridge mode.
0 Comments
Leave a Reply. |