Forwarding ports through pfsense firewall

and I hate the jargon. I honestly dont understand all the techie references. they dont talk english. I kinda scrapped my way through youtube.

but youtube dosnt have much on plex

to be honest. it amazes me that I got internet,lol with this setup,lol

I am here. I can help with Plex on Linux. Don’t fear that
There are a lot of other folks here too. Windows, and Mac… it’s all covered.

I really do recommend starting with a basic pfsense first. Main lan - no frills.
THEN, after the basics are up,
and you’ve had time to read

start adding.

Build Rome over a few weeks.

I got some work to do, but It helps me alot that I can refer to this post… thanks!

You’re very welcome.

As a play toy, Do it in a VM.

There, you can play and NOT hurt anything.

this is it. I dont have any other way to get out there.
its a aes computer running pfsense connected to that tplink switch. and then my acess point. thats what I got. no labs

how are you chatting with me?

I’m using this network,lol

No… desktop computer, laptop , something else ?

Can it run a vm ?

i hear alot about that vm stuff. I’m not that brave. I can work on a live system. worse comes to worse. I go to factory defaults on everything and start from scratch. it gives me a basic connection.

Are you using a Windows computer, Mac, or phone right now to chat with me?

galaxy tablet. a old one,lol

What will PMS be running on?

Nvidia sheild

and using stored media on a raspberry pi

Running openmediavault with Docker

Everything has a webgui and I can ssh into the pi.

I 1000% agree with @ChuckPa’s recommendation to ask for help from the pfSense experts.

I also 10000% agree with the suggestion to draw diagrams. It’s helpful for your own clarity and for sharing with others.

In the Port Forward screenshot, it appears that Source Address and Source Ports are configured. It’s highly likely that those should not be configured - I don’t think the settings in the screenshot will forward traffic from the Internet to your Plex server.

If ANY or * is an option, that may be more appropriate.

I’ll agree with this. Unless you want to restrict the port forwarding to only work for those on the wan who have an IP address of 192.168.20.15 (highly unusual IP address to have on the WAN side) and source port of 9000 (You almost never want to restrict the source port), this isn’t what you want.

The simple configuration for the rule is to something like the following:

pfSense_localdomain_-_Firewall__NAT__Port_Forward2272×176 30.4 KB

1. In the red arrow you put the port number that clients will use when accessing on the WAN (and you must set this in the prefs for the Plex Media Server)
2. In the yellow, the IP address where the server is running inside you LAN
3. In the green, the port number where the server is running on that IP address
4. And the blue a description so you know what this is months later when you’ve forgotten.

Notice that the source address is * as is the source ports. This allows traffic from anywhere on the WAN. I could restrict it to certain IP addresses should I choose and that would be done there. Restricting to certain ports would be highly unusual.
Also notice that the Dest. Address is the WAN Address. This is talking about the destination of the packet that’s arriving on the WAN.

So, traffic entering the WAN interface coming from anywhere on any port going to the router’s WAN address on the red port is forwarded to the yellow IP address on the green port.

P.S. I don’t have UPnP enabled. I prefer to control which few services are allowed to be accessible by those outside my network.