[pfSense Support] NAT or rule?
WAN = DHCP (ISP provided) LAN = 192.168.2.150, DHCP server 192.168.2.0/24 OPT1 = DHCP IP192.68.2.152/24 GTWY192.168.2.101 OPT1 connects to separate router (PPPoE WAN) which handles VPN connections When I follow the outbound NAT steps for load balancing the WAN & OPT1, I cannot ping OPT1's gateway or get any other traffic there either. How can I allow traffic coming from/to OPT1 to LAN? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] NAT or rule?
You've got the same subnet on both your LAN and OPT1 interfaces... You'll need to change one of them to something besides 192.168.2.x/24 for routing to work properly. Tim Nelson Systems/Network Engineer Rockbochs Inc. (218)727-4332 - Original Message - From: "MyStiC" <[EMAIL PROTECTED]> To: support@pfsense.com Sent: Thursday, October 4, 2007 11:09:23 AM (GMT-0600) America/Chicago Subject: [pfSense Support] NAT or rule? WAN = DHCP (ISP provided) LAN = 192.168.2.150, DHCP server 192.168.2.0/24 OPT1 = DHCP IP192.68.2.152/24 GTWY192.168.2.101 OPT1 connects to separate router (PPPoE WAN) which handles VPN connections When I follow the outbound NAT steps for load balancing the WAN & OPT1, I cannot ping OPT1's gateway or get any other traffic there either. How can I allow traffic coming from/to OPT1 to LAN? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] NAT or rule?
Nice. Modified PPPoE router to 192.168.3.0/24 NAT OPT1 to allow ALL rule OPT1 anything... I did this all remotely but appears to have fixed routing to the 3.x from 2.x trace route shows... start > 192.168.3.152 > 192.168.3.101 Problem... The PPPoE router is an IPCop box using IPSec to connect to another (192.168.1.0/24) Updated the VPN source/destinations fr 192.168.2.0/24 to x.3.0/24 @ both ends Can't get to the other end. Any ideas? On 10/4/07, Tim Nelson <[EMAIL PROTECTED]> wrote: > You've got the same subnet on both your LAN and OPT1 interfaces... You'll > need to change one of them to something besides 192.168.2.x/24 for routing to > work properly. > > Tim Nelson > Systems/Network Engineer > Rockbochs Inc. > (218)727-4332 > > - Original Message - > From: "MyStiC" <[EMAIL PROTECTED]> > To: support@pfsense.com > Sent: Thursday, October 4, 2007 11:09:23 AM (GMT-0600) America/Chicago > Subject: [pfSense Support] NAT or rule? > > WAN = DHCP (ISP provided) > LAN = 192.168.2.150, DHCP server 192.168.2.0/24 > OPT1 = DHCP IP192.68.2.152/24 GTWY192.168.2.101 > OPT1 connects to separate router (PPPoE WAN) which handles VPN connections > > When I follow the outbound NAT steps for load balancing the WAN & > OPT1, I cannot ping OPT1's gateway or get any other traffic there > either. How can I allow traffic coming from/to OPT1 to LAN? > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Re: 2 networks on the LAN interface, vlan, trunk?
Ugo Bellavance wrote: Paul M wrote: Ugo Bellavance wrote: VLAN 101 contains ports that are connected directly to the internet (PfSense WAN port, internet port (it is in colocation), other servers that would be connected directly to the internet (not behind PfSense). VLAN 102 contains ports that are connected to devices in the Subnet1, let's say 10.10.10.0/24. VLAN 103 contains ports that are connected to devices in the Subnet2, let's say 192.168.10.0/24. this seems OK, I think, once you've created vlans you assign the wan and lan ports appropriately, then make vlan103 be say OPT1 (and rename it to LAN2?) Ok, done. However, subnet2 is completely isolated. It cannot talk to anyone, nor to the fw, nor the subnet1, nor the internet. if you manually add static routes to hosts on vlan103, does it work? what are you seeing in the arp tables on the hosts? I did create a static route giving the OPT1 IP address as gateway, still no go. However, they are in a datacenter and I'm not sure if the cables are all connected correctly. I'll check and will test again. Thanks a lot., Still not working, the arp tables show nothing on the hosts on vlan103. Ugo - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
