I have many public IPs and our preferred method of working is to put specific services behind it’s own IP and IPFire firewall (e.g. web services on its own IP/firewall, mail on its own IP/firewall, etc). We’ve had this type of setup for years with no issues. Place servers in green (there is nothing else there besides servers) and set up port forwarding on red for those specific services.
The problem I am running into now (seemingly out of the blue) is trying to connect to some of our port forwarding rules from the green network is now being blocked. For example, running Nextcloud and Collabora. You need to be able to reach each server from the other via https. This was working up until recently. Even trying a very specific port forward (pick a random unused port, forward to 443 on an internal server) and logging it, I just get “connection refused” on the client side and nothing in the IPFire logs. Any help or guidance would be appreciated!