Help with WRT>Pfsense config - how to get access to internal services?

I have recently attempted to setup a test scenario using WRT and pfsense virtualized where wrt is handling the pppoe connection for my 1500/1000 connection and then passing it to pfsense.

this is working correctly with pfsens' NAT disabled i only have one hop to the outside world.

where I seem to be having issues is that I can no longer access my internal servers/services - and I'm not sure if it's wrt or pfsense that is the cause.

from wrt I can ping everything I need in my subnet - however I've tried almost every combination (including ALLOW ALL on pfsense) to get access to my services but I have no luck so far which makes me think I am doing something incorrectly in wrt?

my services are behind a reverse proxy on which I can ping from wrt's shell - but that's where it ends, from the internet I cannot get through and looking for some guidance.

Thank you

Anyone have an idea?

Why do you have both? Pfsense/opnsense can handle the ppoe. It would simplify your setup.

Can you draw a diagram of how you've got every connected?

It sounds like the issues are related to pfSense based on your description (in which case, using their user forums may be a better option). However, maybe a diagram of your network topology and the configuration from your OpenWrt router will shed a little light on the situation.

Please copy the output of the following commands and post it here using the "Preformatted text </> " button:
Remember to redact passwords, MAC addresses and any public IP addresses you may have:

cat /etc/config/network
cat /etc/config/wireless
cat /etc/config/dhcp
cat /etc/config/firewall