WLAN to LAN access issue
-
I am not sure if this is the right category, but it seems my problem is related to firewall rules.
I have 3 networks, WAN (DHCP), LAN (10.10.1.0/24), and WLAN (10.10.2.0/24). I have several devices on the LAN network, e.g. web servers on 10.10.1.109:80 or 10.10.1.110:8080 that are accessible just fine from stations on the WLAN subnet or the WAN (via NAT). However, there is an IP camera at 10.10.1.200:20000 that I cannot connect to from the WAN or the WLAN. It is perfectly accessible from the LAN network. Do I need an explicit rule for accessing the 10.10.1.200 IP from the 10.10.2.* subnet?
I currently have a single rule for the WLAN interface that allows everything:Proto Source Port Destination Port Gateway Schedule Description
WAN interface (vr1)
Status up
DHCP up
MAC address 00:18:01:13::
IP address 173.48..
Subnet mask 255.255.255.0
Gateway 173.48.105.1
ISP DNS servers 71.243.0.12
71.250.0.12
Media 100baseTX <full-duplex>In/out packets 97928/79668 (77.69 MB/13.93 MB)
In/out errors 0/0
Collisions 0LAN interface (vr0)
Status up
MAC address 00:0d:b9:1a:1b:1c
IP address 10.10.1.1
Subnet mask 255.255.255.0
Media 100baseTX <full-duplex>In/out packets 594685/543479 (410.65 MB/228.45 MB)
In/out errors 0/0
Collisions 0WLAN interface (ath0)
Status associated
MAC address 00:0b:6b:2f:ef:c3
IP address 10.10.2.1
Subnet mask 255.255.255.0
Media autoselect mode 11g <hostap>Channel 2
SSID *******
In/out packets 474041/519185 (161.36 MB/407.87 MB)
In/out errors 668/5
Collisions 0</hostap></full-duplex></full-duplex> -
-
An allow-all rule should work. When you say you can't access the webcam from the WLAN, does it just hang? Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)
-
An allow-all rule should work. When you say you can't access the webcam from the WLAN, does it just hang? Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)
Thanks, you are truly a hero! I indeed forgot to change the web cam's gateway address when I replaced my firewall.
-
sweet!