No LAN internet
-
Hi
I have installed ce pfsense on a new AMD pc with an Intel dual lan nic.
I have the wan connected ppoe to the satellite modem. Ping tested.
It's connected. Speed good.
I can't connect the LAN. I have tried rules for Lan TCP/UDP lan.net ports any http 80 443 and 64.
I have a vlan opt1 with same rules after I reinstalled pfsense.
I have read many posts but I think it's the WAN settings perhaps.
I look forward to some advice.
Leigh Horton -
@hoandco said in No LAN internet:
I can't connect the LAN. I have tried rules for Lan TCP/UDP lan.net ports any http 80 443 and 64.
Did you remove the default LAN rule?
If so you need to allow at least als DNS, TCP/UDP port 53.I have a vlan opt1 with same rules after I reinstalled pfsense.
What want you to tell us with that info? Does this VLAN work?
Also ensure that the outbound NAT is in automatic mode.
-
J jimp moved this topic from Problems Installing or Upgrading pfSense Software on
-
If the WAN side is passing your a private IP it may be conflicting with the LAN/OPT1 subnets.
Can you post some screenshots of the setup?
-
@hoandco Since we don't have network map, it could be many things (NAT, switch config, misconfigured LAN interface, DNS, wrong default gateway selected, etc), but... I'd start by verifying basic IP communication with an any/any rule.
-
@marvosa said in No LAN internet:
@hoandco Since we don't have network map, it could be many things (NAT, switch config, misconfigured LAN interface, DNS, wrong default gateway selected, etc), but... I'd start by verifying basic IP communication with an any/any rule.
I will do a network map for you.
I will test one rule at a time to verify basic communication.
I am excited by this.
Thanks for the advice to date -
-
-
What subnets are you using there on each side? Is it a public IP on the WAN?
-
@stephenw10
Stephen
It is a static IP. Ppoe connection. It connects and works very well.
Leigh -
So, yes, the WAN side is a public IP? No way it can conflict with the LAN?
-
@stephenw10
I will send some screen shots of wan lan and nat setup a bit later -
@hoandco
The WAN has been connected but have to use another router to send this
-
@hoandco said in No LAN internet:
I have tried rules for Lan TCP/UDP lan.net ports any http 80 443 and 64.
Make sure that the last two rules with the red dot are present on your LAN interface :
as stated : took me years to find these two.
They work flawlessly.The first rule is auto generated, as it is an interface option. pfSense admins like me can very ignorant, so this rule saves me ones in a while.
Rule 2, 4 and 5 are deactivated.
Rule 3 : got that one from some one who told me to put it there. Dono why.Or keep the default LAN firewall rule that you would find on the LAN interface when you install pfSense. That one is also perfect.
( and not importing your config, as that would also import the bad config )What uses port 64 ??
edit : ah, ok, you already have the two perfect rules.
So, LAN interface rules is not the issue.
Your second rules LAN net to LAN net will never be used, as it's already covered by the first, anti lockout rule.Your LAN uses 192.168.55.1 /24 right ?
The device you've connected on the LAN has an IP like 192.168.55.x where x is in the 2->254 range ? Gateway and DNS is 92.168.55.1 on that device ? -
-
Ok, you appear to be using 192.168.55.0/24 as the LAN subnet.
The WAN is using a public IP outside of that I assume?
Please post a screenshot of Status > Interfaces. You can redact your WAN IP if you need to.
Your LAN firewall rules screenshot shows that traffic from the LAN is hitting the LAN interface and opening states.
Check you have a default route in Diag > Routes.
If you don't go to System > Routing > Gateways and save the PPPoE gateway as the default v4 gateway.Steve
-
Added to what steve said :
The device you use on the pfSense LAN, what is the IPv4 is uses ?
It must be something between 192.168.55.2 and 192.168.55.254.
The Gateway and DNS of that device should be 192.168.55.1 for both.If that device is a windows PC :
ipconfig /allBtw : My previous post was hours to late.
-
@stephenw10
update
wan ppoe set as default lan rules changed Also reloadedpfsense and set new ip address
pc connected with new ipv4 address and gateway
Status
IPV 4 routes
interface stats
WAN gateway - Why offline??
Gateways
-
Please check the screenshots. The ping test is working but no internet on lan when pc connected
-
Can't see anything suspect with your WAN setup.
But your latency is huge .... do you have a satellite connection or something like that ?
Or is this an old POTS 'modem' dail-up connection as has been see before 2000 ?
PING packets, send out regularly by pfSense to test the uplink (WAN) connection do all come back, but terrible slow. That will impact your overall 'Internet' performance.
-
@gertjan
Yes satellite modem 25 Mbps
