u/VLANtastic

So I'm running srcds on a Windows VM (Guest) on a Linux machine (Host) using VirtualBox. Networking is set to NAT mode. I have forwarded the relevant port in VirtualBox's settings (27015) for both TCP and UDP to be sure.

IP of my Linux enviro: 192.168.20.2
IP of my Windows VM enviro running srcds: 10.0.2.15

If it matters: I can ping Linux (192.168.20.2) from Windows VM, but not the other way around.
I can also ping Linux from another machine on the network (on an entirely different VLAN at 192.168.10.2).

Furthermore, I can connect to the server using my machine running the game client, using my local IP (192.168.20.2), which indicates to me that the link between the Linux networking and the Windows VM networking is fine.

The problem is: no one outside of my network (WAN) can connect to my server.

They are using the standard command in the Source console:
connect myWANip:port

example:
connect 12.34.56.78:27015

The command itself is, syntactically, fine, so that's not the issue.

Anyway, to troubleshoot, I have entirely disabled Windows Firewall in the VM for both Public and Private networks. Furthermore, here are my pfsense settings:

https://preview.redd.it/j6wgjmxi5uyg1.png?width=1166&format=png&auto=webp&s=4a7fe24293a9242b577b1e897c2387e1a9cd3be1

https://preview.redd.it/xgq7cg8k5uyg1.png?width=1158&format=png&auto=webp&s=3d4a6198b1c2f81a1bb510b121a21b81930fb9ba

However, no matter what I try, I can't seem to get it to work for anyone but myself (i.e. from within the LAN).

Any ideas what I'm doing wrong? I assume it's a pfsense things (probably).

I'm trying to access the GUI for a managed switch (192.168.1.253) from a device on VLAN10 (192.168.10.x). I can ping the switch, but can't access the web GUI. What could cause this?

Switch is a managed D-Link switch. Router is running pfsense.

I tried all sorts of rules in the pfsense firewall, but the only thing I could get working is the ping. Nothing seems to work in terms of the GUI.

Any ideas?

Note: I can access the router GUI no problems (192.168.1.254), which I'm connected to through the switch, which goes without saying I suppose.

See images for both my attempts at a diagram/scheme and current router (pfsense) firewall settings:

WAN rules

LAN rules

VLAN10 (\"MAIN\") rules... the lower rule in this screen is what allows the pinging to even work (from PC1 to the switch).

https://preview.redd.it/grz8hhx9b1yg1.png?width=331&format=png&auto=webp&s=8b0bcfd8dbbf643d1ffce66232002d76d2963de9

interfaces in pfsense

switch settings (eth1 = PC1, eth4 = not currently used, eth5 = router)

Trying to set up a basic VLAN on the way to a few VLANs. This is just the initial "do I know what I'm doing?"/testing phase.

Anyway, I moved all 5 ports on my managed switch (192.168.1.x) over to "VLAN10"...

(eth2, 3, 4 are ports leading to nothing, or devices that are powered off)
(eth1 is the computer I'm accessing the switch and router with, testing things with etc.)
(eth5 goes to my router, which is running pfsense)

https://preview.redd.it/ghzxy58obuxg1.jpg?width=919&format=pjpg&auto=webp&s=06b5dcda351e676ffa045cc42098d5c22fc52eff

I lose access to my router GUI at this point (192.168.1.254), as well as access to the Internet. Changing eth5 (port 5) on the switch back to an untagged VLAN port on VLAN10 again fixes the issue.

In my router settings, I have the default Interface Assignments you'd expect (WAN and LAN, with LAN being on igb1); I have created a VLAN interface as well on igb1, with "VLAN tag" 10:

https://preview.redd.it/mdn45j7ocuxg1.png?width=1171&format=png&auto=webp&s=67d0ed8285e7b8a89ac9ffca739a2d8e9c4b8366

Furthermore, in my router settings, I have DHCP server enabled on the VLAN interface, with a subnet range of 192.168.10.1-192.168.10.254. and an identical address pool range. See below:

https://preview.redd.it/jv8zyjmucuxg1.png?width=1146&format=png&auto=webp&s=47de0bb5165dddc092d4440bb3bff048214a0c82

("MAIN" is the name I gave the VLAN10 interface in the router.)

And if it matters, here is my primary pfsense screen, showing interfaces:

https://preview.redd.it/nkaomambduxg1.jpg?width=563&format=pjpg&auto=webp&s=b8aeaec22eb23f8083c8f9072b4a41c0007525c7

I have tried both automatic and manual IP assignment for my Windows-based testing device on eth1. I am unsure if it's related to this, however.

Any ideas what is going on? I'm still fairly new to networking so feel free to look for anything from advanced, to basic, problems.

Note: this is a follow-up post to this:
https://www.reddit.com/r/HomeNetworking/comments/1svyfvu/seemingly_cant_get_a_basic_vlan_testing_stages/

EDIT: perhaps I need to look into another one of these submenus?...

https://preview.redd.it/pklmnjxqhvxg1.png?width=1080&format=png&auto=webp&s=6c8b14ea0896023c33807b2edf92b816b9259c0d