PFS as a router - not working
-
im trying to get rid of my old crappy router in favor of a spiffy new "smart" one!
so i figure i'll give it my best with PFsence (as recommened by a co-worker)
i can get the box to see the net (ping out ECT)
and i can ping the box with my hardwired computers (and play with the web GUI)
but i cant get out!
i've tried disableing all firewal functions and private networks are not blocked (unckeck)
but heres what im trying to do:
http://www.gliffy.com/pubdoc/1221314/L.jpg
it seems my box just dosn't want to pass data from one nic to the other =-P
im upgrading to do some traffic shaping also
-
Crystal ball is broken. You are using 1.2-BETA-1, right?
-
Need a lot more info in addition to version as well.
What type of Internet connection (DHCP, static, PPPoE, …)? From the ping page in the webGUI can you ping things on the Internet? Can you ping hosts by IP on the wireless from the LAN? Vice versa?
-
it's v. 1.1
*dhcp (comcast connection)i can ping out from the web GUI
i can ping the pf box from my personal computer (hardwired)
didn't install wifi card yeti can also ping my personal box from the web gui
*specs on my box:
it on a asus board intel chipset
pentium2 450
192 ram
20GB hdd
2x linksys 10/100 nic v5.1soon to add linksys 102.11g wifi card wmp54g
-
Disabling all firewall functions (at system>advanced?) will shut down NAT which will break connectivity. pfSense should just work for you in the factory default config as it already is set to use dhcp at WAN. Maybe you should first revert to the factory defaults and retest before changing any settings.
-
i guess i'll do that….
from default settings what would i have to do to make this think into a router as per the diagram above?
*and eventually traffic shaper
-
Basically add a 3rd nic and duplicate the default lan to any firewallrule for the opt1 interface. depending on the way you want things to work simply bridge the opt1 to lan or make it a seperate subnet.
-
You can ping out from the web GUI to the Internet? But can't access the Internet from the LAN?
-
thats that way it was…
i set it to factory and changed a few things seems to work now...
now if i can only figure out how to give this mac no.1 priority =-D