It's been a while since I've played any games online with my Nintendo switch, and I quickly remembered the issues with NAT types on the Switch.
When I checked, I had a NAT type of F, which will not allow online gaming. I found the guides on setting up the Hybrid NAT rules in Pfsense, but my type was still F. I then loosened up my outgoing port rules for that VLAN, and got a NAT type of B.
After tightening them back up a bit and looking online, it looks like the UDP range 1024 through 65535 is expected for outgoing UDP traffic. Is that right? That is a ton of ports, and possibly no better than just enabling uPnP.
Do I really need such a wide range to be able to maintain this NAT type B?
Holy shit they are actually suggesting to put their console in DMZ??? https://en-americas-support.nintendo.com/app/answers/detail/a_id/22272 https://en-americas-support.nintendo.com/app/answers/detail/a_id/22489
There was nobody in the company that said "but wait"?
If someone has more than a console per household needs to get another internet connection in order to online play?
Networking isn't their strong suite, lol