• Routing between 2 pfsense and internet

    4
    1 Votes
    4 Posts
    768 Views
    johnpozJ
    no problem glad you got it sorted.. See how short threads can be when decent amount of info and drawing to show how all connected given ;) Wish more posts were like yours for detailed information when asking for help.
  • Connecting to a third network across an ipsec VPN.

    1
    0 Votes
    1 Posts
    271 Views
    No one has replied
  • HELP APPRECIATED** 3G/4G Modem as WAN Interface?!

    8
    0 Votes
    8 Posts
    2k Views
    jahonixJ
    @caltommo said in HELP APPRECIATED** 3G/4G Modem as WAN Interface?!: Is there an alternative? It doesn’t have to be 100% reliable ... You mean as unreliable as your main internet connection? Be prepared that it fails the exact moment your regular connection is down already. There is no place for cheap when you need a backup for failsafe operation. Or vice versa, if it has to be cheap then it's not needed. I had positive results with this device https://www.amazon.co.uk/D-Link-DWR-921-Router-abnehmbare-Antennen/dp/B00BN36NMM
  • WAN settings not working

    3
    0 Votes
    3 Posts
    511 Views
    K
    I managed to fix this. Annoyingly I was selecting the wrong physical NIC for the virtual switch...
  • routing issue in LAN

    12
    0 Votes
    12 Posts
    1k Views
    johnpozJ
    Your route is 192.168.1.0/32 That is never going to work.. But since its your default it should work.. So your remote client knows to get to 192.168.42/24 it needs to go down the tunnel. Then your VPN devices knows how to get to this as well via pfsense. And your allowing the firewalling? And your not natting at pfsense. Or are you port forward and having your client try and talk to pfsense wan IP 172.17.20.98 So are you still having issues.. If so going to need the details ask about.
  • No Internet connection with non-default gateway

    17
    0 Votes
    17 Posts
    2k Views
    P
    @viragomann Thanks a lot! I find the solution: for changing gateway there are have to be two rules for VLAN: Access to local VLANS via Default gateway (x.x.x.254). Access outdoor where you can change gateway ( GW to internet ) [image: 1529232793327-screen-shot-2018-06-17-at-13.46.26-resized.png] Problem was occurred because seting not default gateway not working as expecting. When your set custom GW (not default) at some VLAN your VLAN can not access to other VLANs via it. When set Default GW pfSense know which route to go to access other VLANS and even go outdoor for internet access. So first rule sase how to access VLANs indoor, and second sase how to go outdoor. Thanks very much! Problem solved! Now I understand how to setup failover
  • Different firewall rules for each WAN interface

    3
    0 Votes
    3 Posts
    327 Views
    S
    I read those docs. They seem simple enough. I tried creating firewall rules and they didn't do anything. I have tried various rules this morning and none of them did anything at all. Can you explain how I would setup rules to allow traffic from only one VLAN to go through my failover interface? Thanks!
  • This topic is deleted!

    2
    0 Votes
    2 Posts
    17 Views
  • This topic is deleted!

    1
    0 Votes
    1 Posts
    4 Views
    No one has replied
  • Using pfSense's OpenVPN in tun mode with public subnet

    2
    0 Votes
    2 Posts
    342 Views
    jimpJ
    There are automatic NAT rules that get put in place to mask VPN client networks on the way out. You can override that: Navigate to Firewall > NAT, Outbound tab Switch to Hybrid Outbound NAT mode and save Click Add to top (upward pointing arrow) Check "Do Not NAT" Interface=WAN, protocol=any Set the source to your public subnet (e.g. 2.2.2.0/29) Destination=Any Description="Do not NAT OpenVPN public clients" Save, Apply Changes
  • Connection timeouts when using non-default gateway

    1
    0 Votes
    1 Posts
    209 Views
    No one has replied
  • PFSense RTSP UDP not working with Static Port Force Rewrite

    9
    0 Votes
    9 Posts
    4k Views
    stephenw10S
    That bug seems to be unrelated. At least to the packet capture above. It's not failing to NAT traffic there just opening a stream to the wrong location. The only place it could have got that from (unless it's hard coded into the server) is from the client. Steve
  • Multi wan weights and Speed Caps

    2
    0 Votes
    2 Posts
    474 Views
    DerelictD
    No. That capability does not exist. You will have to manually monitor and disable the gateway when the cap is reached.
  • Static routes vs. OSPF - OSPF not routing to internet

    2
    0 Votes
    2 Posts
    773 Views
    5
    Wanted to provide an update to my own thread - after doing research it seems that OSPF will not create an automatic source/outbound NAT. So, it would seem that the "fix" would be to create automatic outbound NAT AND manual (hybrid mode), but this kind of defeats the whole point of OSPF. I could do a summary NAT, but then still, the benefit of OSPF would not be fully realized. Hrm.
  • Mark gateway as down and don‘t use it

    20
    0 Votes
    20 Posts
    2k Views
    DerelictD
    When that is the case it is customary to duplicate the steps to repeat the condition and report it, so the developers have something to work with regarding your specific set of circumstances. I understand it is a burden. Sometimes it is easier to just say, "it's a bug, fix it."
  • How to Access IoT device VLAN

    2
    0 Votes
    2 Posts
    410 Views
    V
    You only need an outbound NAT rule for that. Firewall > NAT > Outbound If your outbound NAT is in automatic mode switch to hybrid first. Then add a rule: Interface: IoT Destination: 10.10.30.10 (the cam) Translation address: Interface address. Rules to allow access have to to be add to the interface where the connections come into pfSense, here it is the core.
  • unable to get to my multi static IP's from internal network.

    3
    0 Votes
    3 Posts
    538 Views
    DerelictD
    https://www.netgate.com/docs/pfsense/nat/accessing-port-forwards-from-local-networks.html
  • Connecting 2 sites

    11
    0 Votes
    11 Posts
    1k Views
    johnpozJ
    well yeah its simple copy there is no magic saying oh your copy me from lan net to opt net need to change the source.. Correct yourself. Change it to optX net or whatever you rename that opt net to be... I always change mine to something that makes sense to me. wlan net, dmz net, dtv net, etc.
  • gateway routing through 2 ipsec tunnel protocol based

    3
    0 Votes
    3 Posts
    478 Views
    L
    @jimp that's good news! I'm have researched looking for an solution and become here to post as last resort(because my english writing), fine both side are pfSense i'm happy to use it. While i will keep routing policy by hand a way statistically by adding hosts or networks according my needs. regards
  • Pass port traffic from home router > pfsense VM > gaming server

    8
    0 Votes
    8 Posts
    1k Views
    V
    Looks strange for me. That are only the states. Why don't you post packet captures, which are more informative.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.