Wireless - can only access local network and not able to access internet
-
I have rebooted pfSense and now the interfaces don't even show bridging. Still not able to connect to the Internet with wireless.
-
Per Jimp's post Auto outbound NAT rule generation is enabled and I deleted the WAN rule.
-
Can you post your DHCP configuration?
-
OPT1Wireless
x Enable DHCP server on OPT1Wireless interface
Deny unknown clients
If this is checked, only the clients defined below will get DHCP leases from this server.
Subnet 192.168.2.0
Subnet mask 255.255.255.0
Available range 192.168.2.0 - 192.168.2.255
Range 192.168.2.11 to 192.168.2.20
WINS servers
DNS serversNOTE: leave blank to use the system default DNS servers - this interface's IP if DNS forwarder is enabled, otherwise the servers configured on the General page.
Gateway 192.168.2.5
The default is to use the IP on this interface of the firewall as the gateway. Specify an alternate gateway here if this is not the correct gateway for your network.
(nothing is configured below all fields are blank)
Default lease time seconds
This is used for clients that do not ask for a specific expiration time.
The default is 7200 seconds.
Maximum lease time seconds
This is the maximum lease time for clients that ask for a specific expiration time.
The default is 86400 seconds.
Failover peer IP:
Leave blank to disable. Enter the REAL address of the other machine. Machines must be using CARP.
Static ARP
Enable Static ARP entries
Note: Only the machines listed below will be able to communicate with the firewall on this NIC.
Dynamic DNS- Show Dynamic DNS
Enable registration of DHCP client names in DNS.
Note: Leave blank to disable dynamic DNS registration.
Enter the dynamic DNS domain which will be used to register client names in the DNS server.
NTP servers- Show NTP configuration
Enable Network booting
- Show Network booting
LAN
x Enable DHCP server on LAN interface
Deny unknown clients
If this is checked, only the clients defined below will get DHCP leases from this server.
Subnet 192.168.1.0
Subnet mask 255.255.255.0
Available range 192.168.1.0 - 192.168.1.255
Range 192.168.1.11 to 192.168.1.20
WINS servers
DNS serversNOTE: leave blank to use the system default DNS servers - this interface's IP if DNS forwarder is enabled, otherwise the servers configured on the General page.
Gateway 19.168.1.6
The default is to use the IP on this interface of the firewall as the gateway. Specify an alternate gateway here if this is not the correct gateway for your network.(nothing is configured below all fields are blank)
Default lease time seconds
This is used for clients that do not ask for a specific expiration time.
The default is 7200 seconds.
Maximum lease time seconds
This is the maximum lease time for clients that ask for a specific expiration time.
The default is 86400 seconds.
Failover peer IP:
Leave blank to disable. Enter the REAL address of the other machine. Machines must be using CARP.
Static ARP
Enable Static ARP entries
Note: Only the machines listed below will be able to communicate with the firewall on this NIC.
Dynamic DNS- Show Dynamic DNS
Enable registration of DHCP client names in DNS.
Note: Leave blank to disable dynamic DNS registration.
Enter the dynamic DNS domain which will be used to register client names in the DNS server.
NTP servers- Show NTP configuration
Enable Network booting
- Show Network booting
- Show Dynamic DNS
-
okay that looks sane. if you do a traceroute to a numeric IP outside the network, what does it look like?
-
I'm going to have to stop for today. Not sure when I will get back to this. For now I will have to remove the firewall and go back to my old setup so I can use wireless. Thank you so much for your time and help today Dan. Will you know by a post when I get back on this?
-
yes, i have this thread on notify.
-
Great. It may be a while. I'll do some Wireshark traces next time I fire this up as well. Should have been using Wireshark all along. Happy New Year to you Dan!!
-
I have the same problem but it is specific to wireless clients using Win7. XP & Vista clients connect fine and can access the internet through a Buffalo WZR2-G300N wireless router running in AP mode. Win7 clients are able to get an IP address from pfSense box and access local network but unable to access internet. I swapped out the Buffalo with a Linksys WRT54GC I had laying around and the Win7 clients can now get access to the internet. In my mind this is pointing to a prob with Win7 (or as some people call it SP3 for Vista ;D ) and not the Buffalo as Win7 will not let me change the "Network Type" from "Public" to "Work or Home".
So my question would be what OS are your wireless clients running?
-
BTW, thanks for your help Dan. Is this what you are looking for?
WAN interface (em0)
Status up
DHCP up
MAC address xx:xx:xx:xx:xx:xx
IP address xxx.xxx.xxx.xxx
Subnet mask 255.255.248.0
Gateway xxx.xxx.xxx.xxx
ISP DNS servers xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx
Media 100baseTX <full-duplex>In/out packets 1741648/70643 (165.30 MB/8.51 MB)
In/out errors 0/0
Collisions 0
Bridge (bridge0) learningLAN interface (xl0)
Status up
MAC address 00:0a:5e:4c:6a:cf
IP address 192.168.1.6
Subnet mask 255.255.255.0
Media 100baseTX <full-duplex>In/out packets 53501/56373 (8.42 MB/46.89 MB)
In/out errors 0/0
Collisions 0OPT1Wireless interface (xl1)
Status up
MAC address 00:01:03:e9:b1:4f
IP address 192.168.2.5
Subnet mask 255.255.255.0
Gateway 192.168.2.5
Media 100baseTX <full-duplex>In/out packets 8029/221568 (5.24 MB/12.84 MB)
In/out errors 0/0
Collisions 0
Bridge (bridge0) learning</full-duplex></full-duplex></full-duplex>Try removing your gateway in your opt1 interface options.
-
Didn't notice that the first time - I think you may be right (the gateway entry.)