Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Static-routes between two nested pfSense

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 231 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      MacUsers
      last edited by MacUsers

      I have two pfSense runnig atm (for testing) and this how it's connected:

      • PFS2 is connected from LHST interface (VLAN: 10.10.76.65/26) on PFS1
      • PFS2 receiving the IP 10.10.76.66 on it's WAN interface
      • LAN2 interface (192.168.20.1/28) on PFS2 running admin GUI on the IP: 192.168.20.1

      I'm trying to access the PFS2 admin GUI from the computer(s) connected to the WIFI interface (VLAN: 10.2.10.1/28) of PFS1.

      First of all, is it possible?
      I tried with creating a GATEWAY and a static-route using that gateway etc. and in the end I got totaly lost. I removed everything and starting fresh again: can any one tell me what gateway and route I need to create to achieve that pls?

      -S

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Just to access the PFS2 webgui you should be able to use the WAN address, 10.10.76.66. As long as PFS2 has firewall rules to allow that on WAN you should be able to connect. No need to add any gateways or routes on PFS1 unless you need to access the PFS2 LAN subnet.

        Steve

        M 1 Reply Last reply Reply Quote 0
        • M
          MacUsers @stephenw10
          last edited by

          @stephenw10
          I tried accessing 10.10.76.66 but wasn't able to; so probably because of the firewall rules. What I need to allow on PFS2 WAN interface? Some pointers will be appreciated.

          If that works, I don't necessarily need to access anything on PFS2 LAN atm but maybe in future. So wanted to explore that route too.

          -S

          V 1 Reply Last reply Reply Quote 0
          • V
            viragomann @MacUsers
            last edited by

            @MacUsers
            By default pfSense blocks all private address ranges on WAN. To disable this, go into the WAN interface setting and remove the check at "block private networks".

            Also you need to add a rule to the WAN to allow access to the web GUI.

            1 Reply Last reply Reply Quote 1
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.