Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet [solved]

    Scheduled Pinned Locked Moved Routing and Multi WAN
    13 Posts 4 Posters 1.8k Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • desert_myrrhD Offline
      desert_myrrh
      last edited by desert_myrrh

      Hi,

      I recently build a simple 2 interface firewall with pfSense. I have a PPoE connection on my WAN interface. The interface connects properly and the firewall receives a public IP. WAN interface is up. I can ping and reach my WAN's gateway, but can not reach the internet. Firewall rules are default that comes with PfSense. No changes have been made there. ISP modem is configured as bridge.

      I have a previous box with OpnSense. Same configuration. No problems at all. I also removed my pfSense box and connected my home router directly to the ISP modem, using PPoE on its WAN interface. Also, no problems.

      What am I doing wrong?!

      Thanks everyone.

      Captura de tela de 2025-05-06 03-19-20.png Captura de tela de 2025-05-06 03-25-01.png

      Captura de tela de 2025-05-06 03-19-20.png

      GertjanG patient0P w0wW 3 Replies Last reply Reply Quote 1
      • GertjanG Offline
        Gertjan @desert_myrrh
        last edited by

        @desert_myrrh

        MAC address issue ?

        Clone the MAC from the WAN interface used by the OpSense on the pfSense WAN interface ?
        Or
        Restart the ISP modem first, and then start pfSense ?

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        desert_myrrhD 1 Reply Last reply Reply Quote 0
        • desert_myrrhD Offline
          desert_myrrh @Gertjan
          last edited by desert_myrrh

          @Gertjan As I said previously, both my OpnSense box and my home router, when connected to the ISP modem via PPPoE, works flawlessly. Two completely different interfaces and different MACs.

          I forgot to mention that I removed my network card from my OpnSense box and installed on my pfSense box, so they are using the same card with the same MAC adress.

          I also already tried to restart both of them. Even had my ISP modem off for 10 minutes.

          Thanks for the fast reply.

          1 Reply Last reply Reply Quote 1
          • patient0P Offline
            patient0 @desert_myrrh
            last edited by

            @desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

            What am I doing wrong?!

            The WAN interface does indeed look good. But on LAN you set the IP to 192.168.100.6, subnet mask to 255.255.255.248 = /29 which gives you 6 usable IPs. Nothing wrong but is that on purpose?

            I can ping and reach my WAN's gateway, but can not reach the internet

            • Can you ping 1.1.1.1 from pfSense? And/or from a client?
            • Can you show the gateway page (redact public IPs)?
            desert_myrrhD 2 Replies Last reply Reply Quote 1
            • desert_myrrhD Offline
              desert_myrrh @patient0
              last edited by desert_myrrh

              @patient0 said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

              @desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

              What am I doing wrong?!

              The WAN interface does indeed look good. But on LAN you set the IP to 192.168.100.6, subnet mask to 255.255.255.248 = /29 which gives you 6 usable IPs. Nothing wrong but is that on purpose?

              Yeap. The LAN interface is connected to a small switch. There are only 2 computers connected through cable. I usually have a policy to restrict the network size to its minimum possible size, but I can change to its default mask. At this point, I am accepting every suggestion possible.

              I can ping and reach my WAN's gateway, but can not reach the internet

              • Can you ping 1.1.1.1 from pfSense? And/or from a client?
              • Can you show the gateway page (redact public IPs)?

              No. Can't ping any IP from pfSense except the IP given to the WAN interface and its gateway IP. Computers connected also have the same behavior.

              I'm not home now. When I'm back, I will connect the pfSense box again and print the gateway page to you.

              patient0P 1 Reply Last reply Reply Quote 1
              • patient0P Offline
                patient0 @desert_myrrh
                last edited by

                @desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

                Yeap. The LAN interface is connected to a small switch. There are only 2 computers connected through cable ...At this point, I am accepting every suggestion possible.

                No reason to change the subnet mask, leave it the way it is. Just to check if you did it on purpose or if it was a typo.

                Would be interesting to know the gateway you got when on OPnsense and the ISP modem.

                Are you using pfSense CE 2.7.2 or 2.8.0-BETA?

                And on a totally unrelated note: instead of the menu 'Help' you got an entry 'FW01.local.lan'. How do you manage that, custom theme?

                GertjanG 1 Reply Last reply Reply Quote 0
                • GertjanG Offline
                  Gertjan @patient0
                  last edited by

                  @patient0 said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

                  How do you manage that, custom theme?

                  System > General Set up :

                  79d21071-ae50-40d9-9997-de5984593737-image.png

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  patient0P 1 Reply Last reply Reply Quote 0
                  • patient0P Offline
                    patient0 @Gertjan
                    last edited by

                    @Gertjan said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

                    System > General Set up :

                    I see, never noticed that, thank you.

                    1 Reply Last reply Reply Quote 0
                    • w0wW Offline
                      w0w @desert_myrrh
                      last edited by

                      @desert_myrrh
                      What Diagnostics->routes show?

                      1 Reply Last reply Reply Quote 0
                      • desert_myrrhD Offline
                        desert_myrrh @patient0
                        last edited by

                        @patient0 Ok. Your suggestion nailed it. When I checked the gateway page, for some reason there was an old gateway group pointed as default.

                        The strange thing is I started all pfSense configuration from scratch before posting, reset the interfaces and configured both interfaces (LAN and WAN) from scratch using the terminal.

                        I'm not sure if I missed something or this is a bug. When you reset the interfaces using the terminal, any previous configuration should be erased. Isn't that correct or I am missing something?

                        Thanks everyone. You guys rock.

                        By the way, this is my first post. Can somebody tell me how do I close this thread?

                        GertjanG patient0P 2 Replies Last reply Reply Quote 2
                        • GertjanG Offline
                          Gertjan @desert_myrrh
                          last edited by Gertjan

                          @desert_myrrh

                          The concept of closing a thread doesn't exists here.
                          If possible - I'm not sure, you can edit the first thread and adding the subject by adding something like [solved].

                          edit : what is common here :
                          Upvote the post of the person who brought you the solution.

                          No "help me" PM's please. Use the forum, the community will thank you.
                          Edit : and where are the logs ??

                          desert_myrrhD 1 Reply Last reply Reply Quote 1
                          • patient0P Offline
                            patient0 @desert_myrrh
                            last edited by

                            @desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

                            When you reset the interfaces using the terminal, any previous configuration should be erased. Isn't that correct or I am missing something?

                            I don't think it will touch manually added gateways when you reset the interfaces. If they where DHCP added then yes these should get removed if you reset the interface, have not tried it yet though.

                            1 Reply Last reply Reply Quote 0
                            • desert_myrrhD Offline
                              desert_myrrh @Gertjan
                              last edited by desert_myrrh

                              @Gertjan said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:

                              @desert_myrrh

                              The concept of closing a thread doesn't exists here.
                              If possible - I'm not sure, you can edit the first thread and adding the subject by adding something like [solved].

                              edit : what is common here :
                              Upvote the post of the person who brought you the solution.

                              I need 5 reputation points to upvote. Just found there is a time to edit my last post. I'll wait and update later.

                              1 Reply Last reply Reply Quote 2
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.