Close but no Cigar!
-
Ok I have a pfsense router / Firewall it works well
I've been trying to connect up a netgear Firewall to this box and we have others working ok
My situation is
I can connect via ipsec to a netgear firewall call this (the netgear) 192.168.2.1
I can ping the netgear ip to the pfSense ip 192.168.2.1 to 192.168.3.1
I can ping the pfSense ip from the netgear ip 192.168.3.1 to 192.168.2.1but I can't route any traffic any further than that (ie I could not ping 192.168.3.2 from 192.168.2.1 even when 192.168.3.2 is a valid ip address on that network)
Just wondering what I might be missing?
Should I have a static route in there some where?
Any thoughts greatly appreciatedSteve
-
Is this via a vpn or on the local lan?
if over vpn
you need to make a route for pf to be able to initiate traffic from itself to the vpnif local lan:
Do you have one router plugged into the others WAN port? if so thats the problem, one router is seeing the other as an outside network and will block them. Also you will be double natting with this setup -
Can you provide details of how they're wired up, for example is it:
ISP <–> pfSense <--> Netgear
-
Cry
using your approach the set up is as follows
<pfsense_firewall_vpn><isp adsl="" modem="" inbridgemode="" (real="" ip)=""><internet><isp adsl="" modem="" inbridgemode="" (real="" ip)=""><netgear_vpn_firewal>XIII
This is a vpn</netgear_vpn_firewal></isp></internet></isp></pfsense_firewall_vpn> -
Does both the pfSense and Netgear hosts have static routes defined for the other end of the VPN?
-
Ah! I'll set that up monday and get back to you!
Always something simple!
