Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Help needed with setup

    Scheduled Pinned Locked Moved Off-Topic & Non-Support Discussion
    4 Posts 3 Posters 2.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      petros
      last edited by

      Hi All
      If there is a more fitting area for this post, please let me know. I'm having a problem getting this to work.

      INTERNET =========================> Pfsense ========================> Router =======================> Users
                                                            Public      10.0.0.2/29                    10.0.0.1/29    192.168.1.1/24                    192.168.1.0/24
                                                          Address

      Users are not able to access the internet. A user can ping 10.0.0.2 and pfsense can ping the user but I cannot access webconfigurator from 192.168.1.0 or as I said, access the net. I want to replace a sonicwall that's working at the moment but I can't imaging what I am leaving out. Any suggestions?

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Unfortunately your ascii diagram is a little muddled in my browser.
        However it appears your pfSense box has 10.0.0.2 as it's LAN interface and your users are on 192.168.1.x with a different router to connect the two subnets?
        If you haven't changed the default firewall rules this won't work since the default lan rule is 'allow traffic from the LAN subnet'. Your user traffic is from a different subnet, assuming your router is not doing NAT.
        You will have to add a rule or edit the existing one to allow traffic from your other subnet.

        This should probably be in installations but never mind.  ;)

        Steve

        1 Reply Last reply Reply Quote 0
        • P
          petros
          last edited by

          I have managed to get the user to access the internet but related to this is the strangeness of me not being able to access the webconfigurator from the user subnet even when I create a rule to pass all traffic from the user subnet to everywhere. Any idea why this could be? I can ping the interface from the user subnet, just can't access the webconfig.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            May I ask why you have that router between your users and pfsense?  Is it natting or just routing?

            Why not just put the users on the pfsense lan?  If your router supplies wireless, then just use it as an accespoint.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.