Locked out of PFsense GUI
-
If you gave it an IP that conflicted with whatever the WAN is receiving you can probably get back in by simply rebooting it without the WAN connected.
-
@mskidz
... Or use option 2 of the console menu and re assign your LAN IP and LAN network (default 192.168.1.1/24)Btw : I have a Netgate 4100, the needed console cable was in the box.
I had to download a 'driver' (all details are in the https://docs.netgate.com/pfsense/en/latest/solutions/netgate-4100/...... ) and then I had to install a serial port terminal software.
I assigned it a COM port - number 4
I couldn't find Procomm anymore, so I took Putty (don't be fouled by the somewhat ancient looking web site. This is probably one of world's most known and used COM/Telnet/SSH/etc program) -
Thank you for the help with restarting to factory settings.
Now that I have run the setup wizard i am unable to connect to the internet. In order to connect I must disconnect from the firewall and plug direct into my ISP provided device.
-
And now I am locked out again! This is very frustrating!
-
@mskidz Define "locked out"...invalid password?
When you say you run the setup wizard and lose connection what choices are you making for WAN and LAN? We need more information than "it doesn't work." If it worked with factory defaults and then stopped then something changed.
-
@SteveITS
good point i totally agree. define locked out - after running the set up wizard i only changed a few things in the set up wizard I changed the name of the firewall, I changed the IP address that I speak with from 192.168.1.1 to 192.168.77.1 and I changed the admin password. then it took a really long time for the reload on the wizard when it finally reloaded. the screen went dark and said can not connect. -
@mskidz Did you change your PC to a 192.168.77.x address also? (I'm assuming both pfSense LAN and your PC have a /24 subnet mask)
-
What WAN address is it getting? A public IP?
-
@SteveITS I did not make any changes to my computer if the changes did not come from the set up wizard. Not sure about he subnet mask. what ever the wizard set up and whatever was set up when I installed linux mint. I set up linux mint a couple of years ago.
-
You would need to retrigger the client to pull a DHCP lease in the new subnet. Usually easiest to simply unplug the replug the Ethernet cable on the client to do that.
-
@stephenw10
I unplugged the cable and plugged it back in I can now get into PFsense, but I still cant get on to the internet. -
Is it showing a valid WAN IP? How is the WAN configured?
Does it show link LEDs on the WAN NIC at least/
-
Yes I show the lights blinking at the back of the device in both the wan and lan ports that have a cable plugged in.
I am not sure what you mean how is the wan configured and is it showing a valid wan IP.
-
Show for example : Status > Interfaces
-
Yes, the status will show if it has an IP. It will also show that at the console.
How is the WAN configured in Interfaces > WAN? DHCP? Static? PPPoE?
Steve
-
Interface status - wan shows a red x with auto select both an ipv4 and ipv6 address
Lan shows a green arrow 1000base T with the ipv4 address I assignedAll other wan and lan show red x auto select no ip addresses
-
@stephenw10
The wan is a DHCP ipv4 the enable box is checked and the two reserved networks at the bottom are checked rfc1918 and bogon -
Ok so it's failing to pull a dhcp lease.
What is it connected to?
-
@stephenw10
I have the 4100 connected to my laptop that has Linux mint as an os though the lan port. I have the wan port hooked up to a port on the modem that my ISP gave me.The lap top does not have the traditional Ethernet jack. It has a USB C so I have a converter that receives the Ethernet cable from the 4100 then this convertor has a USB C that connects into my laptop.
-
Ok, so the ISP is not passing pfSense a DHCP lease.
The first thing to try is to power cycle to modem. Many ISPs will lock to the MAC address of whatever was connected and that can be reset by rebooting the modem.
Sometimes you need to call the ISP for that or spoof the MAC address of the old device on the pfSense WAN.If that still fails make sure the ISP doesn't require something else on the WAN like VLAN or priority tagging.
Steve
-
G Gertjan referenced this topic on
