Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VLAN accessed wirelessly can not access internet

    Scheduled Pinned Locked Moved
    L2/Switching/VLANs
    5
    47
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      viragomann @hasekd
      last edited by

      @hasekd
      I don't know this switch, but looks plausible so far.

      Anyway, to investigate just plug the OpenWRT directly into the pfSense NIC port and see if you get an IP out of the VLAN then.

      H 1 Reply Last reply Reply Quote 0
      • H
        hasekd @viragomann
        last edited by

        @viragomann
        Still have the IP from main lan

        V 1 Reply Last reply Reply Quote 0
        • V
          viragomann @hasekd
          last edited by

          @hasekd
          Did you even renew it?

          Can you post screenshots from the OpenWRT Interfaces page and the WLAN interface settings?
          And as well from pfSesse Interface assignments.

          H 1 Reply Last reply Reply Quote 0
          • H
            hasekd @viragomann
            last edited by

            @viragomann
            I did
            Screenshot from 2024-08-18 17-18-36.png Screenshot from 2024-08-18 17-17-20.png Screenshot from 2024-08-18 17-16-24.png

            V 1 Reply Last reply Reply Quote 0
            • V
              viragomann @hasekd
              last edited by

              @hasekd
              Seems, you did all right.
              So I don't understand, why the Wifi device gets an IP from the LAN.

              Are you sure, it got the IP from pfSense?
              Check Status > DHCP Leases
              The lease should be shown up there if it's from pfSense.

              H 1 Reply Last reply Reply Quote 0
              • H
                hasekd @viragomann
                last edited by

                @viragomann
                I have it there
                Screenshot from 2024-08-18 18-37-16.png Screenshot from 2024-08-18 18-37-29.png

                Or it could be something wrong with my firewall setting?

                V 1 Reply Last reply Reply Quote 0
                • V
                  viragomann @hasekd
                  last edited by

                  @hasekd
                  I don't think so. DHCP requests from the client go to the broadcast address. If this IP is coming from the IoT network it would only be able to go to the main DHCP server (to the other network) if you have bridged both on pfSense, which wouldn't make any sense if you intend to separate the networks.

                  H 1 Reply Last reply Reply Quote 0
                  • H
                    hasekd @viragomann
                    last edited by hasekd

                    @viragomann
                    I tried to make renew again and now I get IP address from OpenWRT I think, because it is not listed in the pfsense leases and also I have DHCP from 10.64.27.10 - 10.64.27.60 and I have 10.64.27.130

                    V 1 Reply Last reply Reply Quote 0
                    • V
                      viragomann @hasekd
                      last edited by

                      @hasekd
                      You can disable the DHCP on OpenWRT.
                      For an access point set up, it's recommended to disable DHCP, firewall and DNS in System > Startup.

                      I've actually also removed the concerned packages.

                      H 1 Reply Last reply Reply Quote 0
                      • H
                        hasekd @viragomann
                        last edited by hasekd

                        @viragomann
                        What do you mean with the concerned packages like where are they located? But still not getting the VLAN IP address

                        V 1 Reply Last reply Reply Quote 0
                        • V
                          viragomann @hasekd
                          last edited by

                          @hasekd
                          The DHCP, firewall and Unbound packages. You can install / remove packages System > Software.
                          However, this is not really needed, just disabling them in System > Startup is basically sufficient.

                          Did you enable the DHCP server in pfSense on the IoT interface?

                          To see, what's going on in this network, you can sniff the traffic on IoT using Packet Capture. Enter "67 68" into the port filter (any of) to get only DHCP traffic.
                          Start the capture and reconnect a device to the wifi.You should see an DHCP REQUEST then from it and response from the server.

                          H 1 Reply Last reply Reply Quote 0
                          • H
                            hasekd @viragomann
                            last edited by hasekd

                            @viragomann
                            I have DHCP server enabled on IoT
                            Screenshot from 2024-08-18 20-47-50.png

                            I tried the Packet Capture and it capture traffic only when I select LAN interface and it even capture traffic when I connect to IoT WLAN and on the IoT interface it does not capture anything

                            1 Reply Last reply Reply Quote 0
                            • First post
                              Last post