Hello everyone. to the point, I would to ask something about port portforwarding. is portforwarding very slow connection? My friends opened my server actually is really fast (about 20ms). But when I opened it, it is very slow to opened the web from the my ip public. sometime when I opened it is really fast and sometimes it is very slow response
This is my topology server
(Gateway) -> (Web), (Db)
Gateway (FreeBSD 10.1 RELEASE)
Interface xn0 = this is my ip public
Interface xn1 = 192.168.0.254
Web (FreeBSD 12)
Interface xn0 = 192.168.0.254
Db(FreeBSD 12)
Interface xn0 = 192.168.0.253
This is my configuration PF
The people exactly wondering about my version FreeBSD. Why you don't use all FreeBSD12? Because I am using Citrix XeCenter and Citrix XeCenter cannot add interface card network more than one. it is bug XeCenter. So I am using FreeBSD 10 for can add interface card network more than one.
This is my topology server
(Gateway) -> (Web), (Db)
Gateway (FreeBSD 10.1 RELEASE)
Interface xn0 = this is my ip public
Interface xn1 = 192.168.0.254
Web (FreeBSD 12)
Interface xn0 = 192.168.0.254
Db(FreeBSD 12)
Interface xn0 = 192.168.0.253
This is my configuration PF
Code:
ext_if="xn0"
int_if="xn1"
ip_local="{192.168.0.0/24}"
set skip on lo0
#scrub in all
nat on $ext_if inet from $int_if:network to any -> ($ext_if)
#nat on $ext_if inet from ! ($ext_if) to any -> ($ext_if)
#nat on $int_if inet from ! ($int_if) to any -> ($int_if)
rdr on $ext_if proto tcp from any to ($ext_if) port 80 -> 192.168.0.253
#rdr pass on $ext_if proto tcp from any to ($ext_if) port 80 -> 192.168.0.254 port 80
#rdr pass on $int_if proto tcp from any to ($int_if) port 80 -> 192.168.0.253 port 80
pass in quick on $ext_if inet proto {tcp, udp} from any to any keep state
pass out quick on $ext_if inet proto {tcp, udp} from any to any keep state
pass in quick on $int_if inet proto {tcp, udp} from any to any keep state
pass out quick on $int_if inet proto {tcp, udp} from any to any keep state
The people exactly wondering about my version FreeBSD. Why you don't use all FreeBSD12? Because I am using Citrix XeCenter and Citrix XeCenter cannot add interface card network more than one. it is bug XeCenter. So I am using FreeBSD 10 for can add interface card network more than one.