Having trouble accessing server's services on my LAN.

Garric

@the-other Hi there, Thank you for attempting to help me with this..

I can access plex via direct ip 192.168.55.19:32400 however I can't access access radarr in the web portal when trying 192.168.55.19:7878 I've also not made any changes to the servers firewall rules as those ports are open.

If you see my reply below it shows the rules for the other interfaces.

Yes, 2port nic + 1 port on the motherboard that I use for the wan.

I willt try to disable ipv6

stephenw10

That's the same screenshot.
The LAN interface has default pass rules but OPT will not unless you added rules.

@garric said in Having trouble accessing server's services on my LAN.:

Just testing by accessing the radarr/sonarr web portals in the browser and nothing is loading.

But what are you actually entering? The server IP directly?

What error does the browser show?

Steve

Garric

@stephenw10 So sorry. Tbh i've been hit with covid and I'm trying to trouble shoot this while I'm out sick and the brain is a little foggy so my apologies!

Here is the screenshot of opt1

As for the browser it's just stuck loading like attached.

akuma1x

@garric I see in your original post that you have 3 networks - WAN, LAN, and OPT1. You also state that you have "bridged" your OPT1 and LAN ports so you can put your wireless access point on your LAN network.

You typically don't do that on a pfsense box, even though you are entirely able to do it. You should simplify and NOT bridge interfaces together. You can easily run your access point off of your switch, this would then automatically put it on your LAN network. I would recommend doing that first, then figure out how pfsense works - all of the ins and outs, then you can add additional OPTx networks and play with those. Figure out the basics first!

Your trouble might be coming from you running IPv6 stuff and maybe the separate OPT1 port.

Garric

@akuma1x

Thank you for reply. I will give that a try. the switch actually goes into another room which makes the AP's range a bit worse which is why I did what I did. I will definitely give it a go to see if I can fix it that way.

when you say I am running ipv6 stuff, how can I turn that off? I don't want to run ipv6 at all.

akuma1x

@garric said in Having trouble accessing server's services on my LAN.:

when you say I am running ipv6 stuff, how can I turn that off? I don't want to run ipv6 at all.

It's located under System -> Advanced -> Networking

Screen Shot 2022-07-27 at 4.18.23 PM.png

There's a check box to turn off all IPv6 stuff, first line of settings. If you've already got firewall rules setup using IPv6, you should modify them so it's not confusing on what is really running on those rules.

stephenw10

Your firewall logs show a bunch of default IPv6 blocks on the bridge but it's probably just local link discovery stuff. Unlikely to cause a problem.

Typically in the bridge for wifi to wired like that you would assign the bridge interface itself and move the filtering to the bridge and not it's members. That way you only need one set of firewall rules.
See: https://docs.netgate.com/pfsense/en/latest/bridges/interfaces.html#bridging-and-interfaces

However if you have filtering on the member interfaces, as you do now, it allows you to filter between wireless and wired devices whilst still having them in the same subnet. That can be useful in many situations.

Your pass all rule on OPT1 should be fine.

Opening that connection to the server by IP address directly like that should always work if the server is actually listening.

Steve

Garric

@stephenw10

Hi Stephen,

So i've moved the router underneath the switch and kept this configuration about as barebones as possible.

I am still however having issues connecting to server services. I did a quick google search and found on reddit someone with a similar issue and their subnet mask. Could this be something related?

https://old.reddit.com/r/PFSENSE/comments/i6r7dr/unable_to_access_my_internal_server_on_lan/

akuma1x

@garric said in Having trouble accessing server's services on my LAN.:

I did a quick google search and found on reddit someone with a similar issue and their subnet mask. Could this be something related?

I didn't see it anywhere up above, but what are your subnet masks set to on your network? You should start with the default /24 size, then tweak according to your needs. By the way, there are very few "needs" to actually change the subnet size from a /24 to something else...

stephenw10

@garric said in Having trouble accessing server's services on my LAN.:

I did a quick google search and found on reddit someone with a similar issue and their subnet mask. Could this be something related?

If you have mismatched subnet masks between devices in the same subnet then yes that could certainly cause issues. However that seems unlikely here because some services at the same IP are responding.

Steve