Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Assistance with Multiple DHCP Servers on Netgate 6100

    Scheduled Pinned Locked Moved
    L2/Switching/VLANs
    2
    6
    130
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      socrateberserk
      last edited by

      Hello,

      I recently acquired a Netgate 6100. Previously, I was using a WatchGuard device.

      I consider myself mostly self-taught in networking, and so far, I’ve always managed to configure my networks adequately.

      However, over the past few days, I’ve encountered a problem.

      I’m trying to use a separate DHCP server for each of the four LAN interfaces.

      IGC0: 192.168.100.0/24
IGC1: 192.168.101.0/24
IGC2: 192.168.102.0/24
IGC3: 192.168.103.0/24

      So far, everything works fine—each DHCP server operates correctly.

      However, only the first LAN is able to route traffic through the WAN interface to access the Internet. In other words, only the first LAN can exit the network.

      Please note that the WAN is configured to receive a static IP from my ISP on the ix3 interface.

      How can I configure the other three DHCP servers to allow their respective LANs to access the Internet as well?

      Thank you in advance for your help.

      Best regards,

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @socrateberserk
        last edited by

        @socrateberserk is your dhcp for these other networks handing out the gateway and dns for this network. By default this would be pfsense IP on that network.

        Did you create rules on these interfaces to allow internet? Out of the box the lan has default any any rule that allows internet, etc.. But if you create a new network there would be no rules.. Dhcp would work, but no clients would be able to go anywhere without rules to allow what you want.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.03 | Lab VMs 2.7.2, 24.03

        S 1 Reply Last reply Reply Quote 0
        • S
          socrateberserk @johnpoz
          last edited by

          @johnpoz
          Hello, and thank you for your response!

          Unfortunately, I tried setting one of the networks (192.168.101.1) with the default gateway of pfSense, which is 192.168.100.1.
          I get the error: “The gateway address 192.168.100.1 does not lie within the chosen interface's subnet.”

          If I change the subnet range of the network, I get the following error:

          “IPv4 address 192.168.101.1/16 is being used by or overlaps with: LAN1 (192.168.100.1/24), LAN3 (192.168.102.1/24), LAN4 (192.168.103.1/24).”

          I also tried adding the following rules:

          Protocol: IPv4*
Source: LAN2 address
Port: *
Destination: *
Port: *
Gateway: *
Queue: none
Schedule:
Description: Default allow LAN to any rule

          And:

          Protocol: IPv6*
Source: LAN2 address
Port: *
Destination: *
Port: *
Gateway: *
Queue: none
Schedule:
Description: Default allow LAN IPv6 to any rule

          Thank you so much for your help!

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @socrateberserk
            last edited by johnpoz

            @socrateberserk said in Assistance with Multiple DHCP Servers on Netgate 6100:

            192.168.101.1/16 is being used by or overlaps with: LAN1 (192.168.100.1/24), LAN3 (192.168.102.1/24), LAN4 (192.168.103.1/24).

            Well yeah pfsense is going to balk at you if you try and use overlapping networks.. Don't do that!

            Those rules are never going to work - how the source into an interface going to be the IP address of the interface.. Source would be the IP of the client on said network.. Use the lan2 subnet as the source.

            But if you have overlapping your going to have a bad day!! Don't do that!!

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.03 | Lab VMs 2.7.2, 24.03

            S 1 Reply Last reply Reply Quote 0
            • S
              socrateberserk @johnpoz
              last edited by

              @johnpoz
              I feel a bit silly, I just changed the rules and it works.
              Thank you so much!

              johnpozJ 1 Reply Last reply Reply Quote 0
              • johnpozJ
                johnpoz LAYER 8 Global Moderator @socrateberserk
                last edited by

                @socrateberserk said in Assistance with Multiple DHCP Servers on Netgate 6100:

                I just changed the rules and it works

                You corrected your overlapping networks as well as I assume, pfsense will not allow you to put an IP on an interface that overlaps with another interface

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 24.03 | Lab VMs 2.7.2, 24.03

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post