Can't get pass VLAN /WAN setup
-
rebooted the modem did not help.
Ifconfig shows wan has ipv6 but no ipv4. In the log i'm not sure how to read it so can't tell if it is up or down.
As for spoofing, what mac address should i put in?
Could there ne hardware issues?
Thanks.
-
The ifconfig command will show an IPv6 address based on the device MAC even if it's disconnected.
Look at the end of the ifconfig output for your WAN NIC. It should show something like:
fxp0: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=9 <rxcsum,vlan_mtu>ether 00:90:7f:87:dc:74 inet6 fe80::290:7fff:fe87:dc74%fxp0 prefixlen 64 scopeid 0x7 inet 192.168.5.11 netmask 0xffffff00 broadcast 192.168.5.255 nd6 options=1 <performnud>media: Ethernet autoselect (100baseTX <full-duplex>) status: active</full-duplex></performnud></rxcsum,vlan_mtu></up,broadcast,running,simplex,multicast>If it doesn't say either 'active' or 'autoselect' you have a problem.
Steve
-
It says active, and if I type "ifconfig re0 down, it change status to blank, and back to Active after ifconfig re0 up, so it does respond and seem to be ok, other then no IP. After the reboot of the modem, the WAN ip says 0.0.0.0, and during the log, it shows the ISP IP for a short while after startup, then disappears.
-
It's a bit hard to follow where you're up to with this. How does your network look now? Is the Netgear router between the cable modem and the pfSense WAN port?
How did you bridge the Netgear? Try it like this:
http://kb.netgear.com/app/answers/detail/a_id/965
making your Netgear a Wireless AP and 3-port switch.
-
It's a bit hard to follow where you're up to with this. How does your network look now? Is the Netgear router between the cable modem and the pfSense WAN port?
How did you bridge the Netgear? Try it like this:
http://kb.netgear.com/app/answers/detail/a_id/965
making your Netgear a Wireless AP and 3-port switch.
My setup is like this: Cable Modem > WAN pfSense Box - LAN pfSense box (DHCP on - IP pool: 192.168.1.100-245 - Static IP:192.168.1.1 ) > LAN Netgeat router (DHCP off, set to bridge mode as far as I understand and WiFi AP, Static IP: 192.168.1.2) (Netgear WAN has no cable in it).
LAN works fine with no problem communicating between the computers on the network and from computer to router and to pfSense Box, both by cable and by WiFi. But I have no Internet access. unless I hook my MAC/ or PC straight up to the cable modem which then gives me correct IP and gateway.
If I hook the pfSense WAN cable to the cable modem, I get IP 0.0.0.0 on WAN on pfSense box, yet in the log I see the correct IP appear right after reboot, but then it disapears. LAN IP is fine. -
OK, Sorry I thought you might have gone back to Modem > Netgear > pfSense
Do what Steve suggested earlier and set the pfSense WAN interface to spoof the MAC address of your Mac: Interfaces > WAN > MAC address.
-
It must also say 'autoselect' unless you have specifically told it not to auto-negotiate the link speed and duplex. This is where some hardware fails. The NIC I was dealing with recently ended up flapping (going up and down) continuously as it repeatedly failed to negotiate the line speed. I have no idea why. I also have a laptop with a Realtek NIC that just won't work with my SMC switch but works fine with other hardware.
Like I also said though this is very rare so I'd look at other thing first.Steve
-
OK, Sorry I thought you might have gone back to Modem > Netgear > pfSense
Do what Steve suggested earlier and set the pfSense WAN interface to spoof the MAC address of your Mac: Interfaces > WAN > MAC address.
Got it, I didn't understand that it was the Mac's MAC I was spoofing. I will try try that. Thanks :)
Steve: It is set to "autoselect" but if it is flapping, would I see that in ifconfig where it then should liste different speed and duplex?
-
In the two instances I reffered to if it is flapping you should see that in the logs and also at the link LED. The other card just refused to connect so showed status 'no carrier'. If you have a conflict in auto-negotiation the card often defaults to half duplex which can cause problems.
One other thing that I just remembered. Of all the interfaces/hardware you have tried how many (and which ones) are Gigabit Ethernet? A common problem that can present itself is a bad cable that works fine at 100Mbps but fails at Gigabit due to needing all 8 conductors. It can appear to be working as the negotiation stage only requires 4 conductors.
Steve
-
The connection is stable as fare as I can tell - light stays on and I see no sign of flopping in the log.
I have reset the modem, resat the pfsense box again and still nothing.
One other thing that I just remembered. Of all the interfaces/hardware you have tried how many (and which ones) are Gigabit Ethernet? A common problem that can present itself is a bad cable that works fine at 100Mbps but fails at Gigabit due to needing all 8 conductors. It can appear to be working as the negotiation stage only requires 4 conductors.
The modem is Gigabit, the pfSense box is gigabit and the Netgear box is Gigabit, but the cable between the modem and the pfSense box is Cat-5e, while the cable between the pfSense box and the Netgear box is Cat-6. I didn't use cat-6 cable from the modem since my internet connection is not even close to a gigabit, but you mean this could be an issue?
Thanks!
-
No it's not a cat5 vs cat6 issue. If one of the wires in the cable is broken (or if you used a cable economiser) it might work just fine at 100Mbps where you only need 4 out of the 8 wires. Gigabit needs all 8 so wouldn't work. If this was the first time you used gigabit devices at both ends that could show up a broken cable. It sounds like you already used gigabit hardware though. Swapping out the cable is an easy test though. ;)
Steve
Edit: typo
-
Swapping out the cable is an easy test though. ;)
Steve
Guess what? That solved it! Used a CAT-6 patch cable and now it works. Guess something is wrong with that other cable…
Thank you SO much! I was about to give up. Had already downloaded Smoothwall, just to see if the issue was with pfSense on my box.
Thanks a lot again. Now I got to get working with the configuration of the firewall. :)
