Trouble Configuring pfSense for PPPoE with ISP Modem in Bridge Mode

viragomann

@vitorlm said in Trouble Configuring pfSense for PPPoE with ISP Modem in Bridge Mode:

Can my ISP block this type of configuration?

The ISP can restrict the connection to a certain MAC address, this one of his router.
To workaround, you can spoof the MAC on pfSense on the mother interface.

Based on the details above, is there something I might be doing wrong?

Maybe you connected pfSense to the wrong LAN port. But it is the first one in most cases.

I'd like to know if there's a detailed log to identify the connection error and if anyone has faced this issue before.

All related events are written into the PPP log.

vitorlm

@viragomann

I've spoofed the MAC address, anticipating potential issues, and consistently utilized port number 1 for connections.

I cannot really understand why the PPPoE connection is not being created. And as I said, the log just showed timeouts and connection attempts.

viragomann

@vitorlm
If there isn't anything else in the log I'd assume, that there is no PPPoE signal from the modem. So either the interface settings on pfSense are not correct or something in front of pfSense is wrong.

** Interfaces:
*** WAN (igc0.600)

Not really clear from this description if you did it right. Maybe you can post screenshots.

You can also try the PPPoE connection with a computer plugged into the modem to investigate if it works.

JonathanLee

What’s the MTU set to?

vitorlm

Hi @JonathanLee ! I was using 1492.

JonathanLee

@vitorlm Columbus sailed the ocean blue.. that 1492?

vitorlm

man... @JonathanLee
I am not a native English speaker, so I was curious about "Columbus sailed the ocean blue"... and I googled it! lol
And yes, that one!

JonathanLee

@vitorlm if you set it to MTU to 1500 does that help? Most often the default MTU is 1500 for everything, Nintendo switch defaults to a MTU of 1400 for some reason. We used to have to sing this song about that date in elementary school many years ago.

vitorlm

@JonathanLee I tried 1500, but it didn't work.

However, I was able to create a PPPoE connection directly on my laptop while keeping DHCP and VLANs on the modem, which worked perfectly. So, I am doing something wrong in my pfSense config.

But my goal is to have pfSense as DHCP Server and Firewall... So, I will need to go deeper into it.

JonathanLee

You said you spoofed the MAC address,

I would call the ISP ask them why it won't connect, you got the username and password correct right?

Ask them what they see in the logs on their side when it tries to connect, they will always help.

Also have you checked your firewall logs to help pinpoint the issue also?

vitorlm

Hi all!

In the end, I was able to solve my problem.

To fix this, I mean, it was just another try, but fixed it: I removed all the VLANs and kept my WAN set up as PPPoE. I also stopped spoofing my MAC ADDRESS. And configure rules on my firewall that allow for communication between LAN and OPT1.

Initially, I believed I had overcomplicated things by following many different sources on the internet, but now everything is working perfectly. I have three interfaces (WAN, LAN, and OPT1) with DHCP enabled, and some firewall rules. Simple like that!

Thank you all for your help!