Cool. I will try your approach as a workaround.
Obrigado :-)
-Eduardo
On Apr 28, 2012, at 9:07 AM, Jonathan Lessa <jonathanle...@gmail.com> wrote:
is a pleasure to help!
let's see if I can explain it better.
I gave him two options:
1) use the Endian Static IP
There were two distinct networks: pfsense-Endian and Endian-LAN
2) Do not use the WAN and put the two network interfaces in the green zone
Then their workstations and Endian would be in the same LAN pfsense. Vc
atruibuiria a LAN ip of the Endian (green zone), but their workstations have
pfsense as the gateway.
For this to work you must connect the pfsense in one of the interfaces and
other interface endian endian switch connected in your LAN, so that all
traffic from LAN to LAN getaway (pfsense) would be to bridge the green zone.
Jonathan Lessa
2012/4/28 Eduardo Mendes <eduardo.men...@gmail.com>
> Jonathan and Farzan,
>
> Thank you both for replying it.
>
> Turns out, there is a bug on Endian 2.5.1 where it is redirecting the
> traffic to the default gateway even though all the machines involved are on
> the same subnet. I tried to reproduce the problem on 2.4.1, but this
> version works like a charm. I opened bug 0004342 to track this issue.
>
> Jonathan,
>
> Thanks for your idea as to use it as a static ip and not a Gateway. You
> mean that I should configure both networks with the same ip range?
>
> http://bugs.endian.com/bug_view_advanced_page.php?bug_id=4342
>
> Thanks,
>
> -Eduardo
>
>
> On Sat, Apr 28, 2012 at 4:42 AM, Jonathan Lessa
> <jonathanle...@gmail.com>wrote:
>
>>
>> Have tried to leave the Endian Static IP and not as GATEWAY?
>> If you want to leave the endian "transparent" between your workstations
>> and pfsense, Endian can try to leave without WAN and configure two
>> ethernet interfaces on the same bridge, Endian to assign an IP network and
>> configure it the default route as the pfsense.
>> So you will have all traffic passing through the bridge, which allows
>> you to apply rules of proxy and firewall, but the gateway for your
>> workstations would be the pfsense and not the Endian. Since there must be
>> structured
>> as follows: Cable Modem ---> pfSense -> ([eth0] Endian [eth1]) -> LAN
>> Switch
>>
>> Jonathan Lessa
>>
>>
>>
>> 2012/4/27 Eduardo Mendes <eduardo.men...@gmail.com>
>>
>>> Hello all,
>>>
>>> I'm doing some tests in my lab and found a very weird problem. I have
>>> two servers: one has pfsense and it is my gateway to the internet. The
>>> second one is a Endian Community 2.5.1 configured as a gateway. PFSENSE is
>>> the only one with two networks: one is connected to my lan and the other
>>> one is my cable modem.
>>>
>>> The problems is every time I add the pfsense ip as the default gateway
>>> in Endian, pfsense starts to block traffic that comes from endian to my
>>> workstation(from where I am accessing endian web interface). I send a
>>> packet to endian. Endian replies it, but it replies through its default
>>> gateway - pfsense. Hence I lose access to endian web interface. If I
>>> restore endian to its factory configuration, or if I delete the default
>>> gateway, I get the access back.
>>>
>>> My question here is why endian, when configured on gateway mode, is
>>> sending all the traffic through its default gateway - pfsense - if both
>>> endian and my workstation are on the same network? Have anyone had luck
>>> configuring a endian, as a gateway, behind a pfsense?
>>>
>>> -Eduardo.
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Live Security Virtual Conference
>>> Exclusive live event will cover all the ways today's security and
>>> threat landscape has changed and how IT managers can respond. Discussions
>>> will include endpoint security, mobile security and the latest in malware
>>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
>>> _______________________________________________
>>> Efw-user mailing list
>>> Efw-user@lists.sourceforge.net
>>> https://lists.sourceforge.net/lists/listinfo/efw-user
>>>
>>>
>>
>>
>> --
>> Att.:
>> Jonathan Lessa
>>
>>
>>
>> ------------------------------------------------------------------------------
>> Live Security Virtual Conference
>> Exclusive live event will cover all the ways today's security and
>> threat landscape has changed and how IT managers can respond. Discussions
>> will include endpoint security, mobile security and the latest in malware
>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
>> _______________________________________________
>> Efw-user mailing list
>> Efw-user@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/efw-user
>>
>>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> Efw-user mailing list
> Efw-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/efw-user
>
>
--
Att.:
Jonathan Lessa
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
