Dual Lan setup
-
Hello everybody
I have difficulties setting up a dual LAN with pfsense.
I would like the lans to communicate AND to reach the internet:–-LAN
WAN ---- PFSense ---|
---OPT1For now i managed to setup the 2 lans bridging LAN to OPT1 with DHCP enabled. The 2 can communicate without problem but i can only reach internet from the LAN.
I've create 1 firewall rule for the OPT1 interface:
Protocol>* Source>OPT1subnet Destination>* Gateway>*Sure i missed someting because it seems very simple to everyone from what i've read.
Thanks for any help.
ps: sorry for my bad english
-
If you bridge i'd do it the other way:
OPT1 to LAN.
But you should know that this makes basically one single subnet and the pfSense is for the 2 Interface not more than a Switch.I would set it up so that you have 2 separate subnets.
Just copy the default rule from LAN to OPT1 and change the "source" to OPT1-subnet.@http://forum.pfsense.org/index.php/topic:
If you want to have Internet access from multiple LAN subnets (on various OPTx interfaces) enable Advanced outbound NAT.
You need to create a rule for every subnet you want NAT'ed.
Alternatively you can change the source of single existing rule from LAN to "any" thus NAT'ing everything.
This might create a problem for FTP with multiWAN
more here: http://forum.pfsense.org/index.php/topic,7096.msg40810.html#msg40810 -
My mystake, it's OPT1 who is bridged to LAN.
I tried whith 2 separate subnets but i didn't manage to setup dhcp on the 2nd LAN (OPT1). From where does the 2nd LAN clients get their IPs ?
I hope i made myself clear enough :-[ -
You go to the DHCP-config page and click on the tab OPT1.
-
I haven't worked with bridged interfaces in pfSense yet.
If you bridge OPT1 to LAN will it be a filtering bridge or simply two adjacent ports on a dumb switch?
OPT1 should be the same subnet as LAN after bridging, right? Why would I need to setup another DHCP server then? I shouldn't even be able to configure a second DHCP server within the same subnet - especially not in the same box! …What am I missing?
-
You go to the DHCP-config page and click on the tab OPT1.
Thanks, i'll try that tomorrow
I haven't worked with bridged interfaces in pfSense yet.
If you bridge OPT1 to LAN will it be a filtering bridge or simply two adjacent ports on a dumb switch?
I can't tell for that as i didn't manage to get it work.
OPT1 should be the same subnet as LAN after bridging, right? Why would I need to setup another DHCP server then? I shouldn't even be able to configure a second DHCP server within the same subnet - especially not in the same box! …
What am I missing?
Yes, OPT1 has the same subnet as LAN after bridging.
The dhcp server is for the case of creating 2 LAN subnets, that i also did before whithout success. -
I would set it up so that you have 2 separate subnets.
Just copy the default rule from LAN to OPT1 and change the "source" to OPT1-subnet.@http://forum.pfsense.org/index.php/topic:
If you want to have Internet access from multiple LAN subnets (on various OPTx interfaces) enable Advanced outbound NAT.
You need to create a rule for every subnet you want NAT'ed.
Alternatively you can change the source of single existing rule from LAN to "any" thus NAT'ing everything.
This might create a problem for FTP with multiWAN
more here: http://forum.pfsense.org/index.php/topic,7096.msg40810.html#msg40810It works like a charm that way, just needed a reboot.
Thank you very much GruensFroeschli
-
If you needed to reboot i suspect you are using the 1.0.1 version.
This version has a lot of known issues.
It would be better to update to 1.2RC4.
The 1.2 final version should be released very soon. -
I'm using 1.2RC4.
Maybe i didn't wait long enough…
