Blocking off wireless network.
-
So far, Only problem is the AP interface doesn't pull WAN connection.
And how do I get the AP to pull DHCP requests from the PFsense box, Its running DD-WRT
I tried at one point to have it pull DHCP requests from the pfsense box but it ended up making the AP inaccessible via webgui and telnet so I had to reset it.You should follow the docs:
http://www.dd-wrt.com/wiki/index.php/Wireless_Access_Point#Long_Version
-
Yeah - I have a DDWRT set up as AP like you want - Following that manual will do it.
Caution - During that whole process, make sure you are SAVING after every step - Not applying.Do apply at the very end, then under admin interface in DDWRT, at very end, reboot.
Make sure you tell the AP to grab a static IP outside the DHCP range on OPT1.Should be all good.
-
+1, works perfectly fine here.
-
Yeah - I have a DDWRT set up as AP like you want - Following that manual will do it.
Caution - During that whole process, make sure you are SAVING after every step - Not applying.Do apply at the very end, then under admin interface in DDWRT, at very end, reboot.
Make sure you tell the AP to grab a static IP outside the DHCP range on OPT1.Should be all good.
Followed those instructions SPECIFICALLY. did not work. lol. AP is not assigning ip addresses. nor can I acces web UI anymore.
-
The AP isn't supposed to assign the IPs.
Pfsense is supposed to handle DHCP for it.
You should have given your DD-WRT a static IP.
Trust me when I tell you, you didn't do something EXACTLY as you are supposed to. -
The AP isn't supposed to assign the IPs.
Pfsense is supposed to handle DHCP for it.
You should have given your DD-WRT a static IP.
Trust me when I tell you, you didn't do something EXACTLY as you are supposed to.I did follow the tutorial EXACTLY as I was supposed to.
AP is set to assign out IP at 10.0.1.10-245 and I set the IP of the AP static @ 10.0.1.5 so shut your face sir :P
I followed that tutorial EXACTLY word for fucking word.
3 times.
-
AP is set to assign out IP at 10.0.1.10-245 and I set the IP of the AP static @ 10.0.1.5 so shut your face sir :P
I followed that tutorial EXACTLY word for fucking word.Uh, WTF!
Open the Setup -> Basic Setup tab
WAN Connection Type : Disabled
Local IP Address: 192.168.1.2 (i.e. different from primary router and out of primary router's DHCP pool)
Subnet Mask: 255.255.255.0 (i.e. same as primary router)
DHCP Server: Disable (also uncheck DNSmasq options)
(Recommended) Gateway/Local DNS: IP address of primary router (many things will fail without this)
(Optional) Assign WAN Port to Switch (visible only with WAN Connection Type set to disabled): Enable this if you want to use WAN port as a switch port
(Optional) NTP Client: Enable/Disable (if Enabled, specify Gateway/Local DNS above)
Save -
Its ok. You know what they say.
If at first you don't succeed - WTF - Try, Try again. And again. And sometimes again.
You will get it right.
BTW - All of the things they list as "Optional" and "recommended" in that how-to aren't optional.
Disable all the optional stuff as well and take all the optional steps.
(Sorry if I didn't mention that before - Shutting face now :P) -
Its ok. You know what they say.
If at first you don't succeed - WTF - Try, Try again. And again. And sometimes again.
You will get it right.
BTW - All of the things they list as "Optional" and "recommended" in that how-to aren't optional.
Disable all the optional stuff as well and take all the optional steps.
(Sorry if I didn't mention that before - Shutting face now :P)BLAHHHHHH, Okay. I'll give it another shot :) thanks lol.
-
O Captain! My Captain! WTF not I say. Good luck.
-
Still doesn't seem to work. what the hell am I doing wrong lol
-
What version of DD-WRT are you using? What build number? (upper right hand corner of screen).
Also, what type of router? Lets start there.Also, if you remove DD-WRT router and you plug a computer into the new OPT1 interface, does that work?
-
before I do the transition itl assign the router an IP from the AP interface. usually 10.0.1.10
Buffalo and a buffalo WZR-HP-n450.
Build v24sp2
-
I'm not sure I understand this:
"before I do the transition itl assign the router an IP from the AP interface. usually 10.0.1.10"
Lets take baby steps then. 1st. Lets make sure that both your LAN and your OPT1 work, have separate IPs and dish out DHCP as expected and that the firewall rules allow traffic.
Could you plug a computer into both of those and test make sure they are up and can access internet. Then start in on DD-WRT again.
-
I'm not sure I understand this:
"before I do the transition itl assign the router an IP from the AP interface. usually 10.0.1.10"
Lets take baby steps then. 1st. Lets make sure that both your LAN and your OPT1 work, have separate IPs and dish out DHCP as expected and that the firewall rules allow traffic.
Could you plug a computer into both of those and test make sure they are up and can access internet. Then start in on DD-WRT again.
What I do know is when I have router plugged into AP interface, no WAN connectivity.
-
Thats not what I asked about.
I want to know if the LAN and the OPT1 work and provide internet to a computer if one is plugged directly into it.
Once I know pfsense is working as advertised, then it will be easy to focus on DD-WRT, confident that any problems encountered are DD-WRT and not pfsense.
-
Thats not what I asked about.
I want to know if the LAN and the OPT1 work and provide internet to a computer if one is plugged directly into it.
Once I know pfsense is working as advertised, then it will be easy to focus on DD-WRT, confident that any problems encountered are DD-WRT and not pfsense.
Nah thatd be a big fat negatory, nothing if I plug it into my computer.
Lan yes, OPT1, no.
OPT1 assigned IP, No internet.
-
OK - Do you know how to take snapshots and post to forum?
Go to Interfaces > OPT1
Post whats there.
Then go to Firewall > Rules >OPT1 and then post that here.
We will need to fix this 1st and DD-WRT second. It will work.
(My guess is that you need to create a firewall rule on OPT1 to allow ALL to ANY)
-
Here they are, and you're probably right I imagine the rules should be similar to how the rules in LAN are set up.
-
Considering you have no traffic allowed… WTF, LOL :D Also, you do NOT want to block private networks on an interface with private IP. ;)