Hi Alta team. Is there a way to configure port forwarding rules so they work when on WireGuard VPN? Right now I am not able to access my local email server through my port forward rules while on WireGuard VPN remotely.
Did you want it to not work at all unless on VPN? If so you don’t need to port forward?
Can you ping anything inside the LAN while on VPN?
Good questions. The port forwarding is necessary because my mail server is hosted on prem. I am able to get to all other local resources just fine when on VPN. I believe it might be a zone issue. When I am on lan, hairpin NAT is taking care of things. However, when on VPN that is not the case.
How odd, according to this nothing “should” be blocked from the zones VPN to LAN.
But yeah I see what you mean 
@Alta-Jeff any idea on this one? I’m wondering if it’s a zone thing.
I’m sure it has something to do with the NAT hairpin. In the mean-time, I’d recommend using the direct IP address of the server on the LAN, instead of depending on hairpinning. We’ll take a look at this when we can.
If it were a server that would be easy to do, but it is my self hosted email server. Not as easy to map that via IP via a host file on my phone