Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Three subnets two only work for interenet , but I want internal to work as well

    Scheduled Pinned Locked Moved Routing and Multi WAN
    6 Posts 2 Posters 997 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P Offline
      parsalog
      last edited by

      I have three LAN subnets 10.1.1.0/24 10.1.2.0/24 10.1.3.0/24  , well more actually, but they fall outside the scope of this issue.

      all wireless devices(tablets, phones…) get assigned to the 10.1.3.0/24 via reservations from a DHCP superscope

      all server equipment (web, email...)fall in the 10.1.1.0 /24

      any phone or tablet using the 10.1.3.0/24 can access the outside internet without issue.

      my problem is they cannot reach the internal 10.1.1.0/24 .

      That said they do "appear" to have the ability to ping, but tcp traffic fails, port 80, 443  . Cant send email, or pull up internal websites .

      I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .

      1 Reply Last reply Reply Quote 0
      • D Offline
        doktornotor Banned
        last edited by

        @parsalog:

        I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .

        How on earth does this make any sense?

        1 Reply Last reply Reply Quote 0
        • P Offline
          parsalog
          last edited by

          which part has you confused?

          under interfaces the LAN is set with a static IP of 10.1.1.1 and the subnet is a /16

          under firewall  and Virtual IPs , I have added two virtual IPs 10.1.2.1 and 10.1.3.1  but have a subnet of /24

          the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway,  and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway

          1 Reply Last reply Reply Quote 0
          • D Offline
            doktornotor Banned
            last edited by

            @parsalog:

            the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway,  and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway

            Afraid I have to repeat myself: How on earth does this make any sense and what is the point here?

            1 Reply Last reply Reply Quote 0
            • P Offline
              parsalog
              last edited by

              Originally my network had just one subnet the 10.1.1.0 /24 , but I ran out of IPs

              As such I added the 10.1.2.0/24 to accommodate more device.

              I guess I could have done a /22 , but I was under the impression the router could connect the two subnets, and giving me the option to apply firewall rules to the traffic between each.

              just recently I have run out of IPs again, so I have added the 10.1.3.0/24

              also what I find interesting is I am only having issues with mobile devices. this IP scheme has been working with out issues on my PC's and printers.

              1 Reply Last reply Reply Quote 0
              • P Offline
                parsalog
                last edited by

                In doing more testing, I have discovered that it only appears to be android devices failing, I have only tested Samsung devices so far. I tested a apple iPad on the 10.1.3.0/24 and a laptop as well, both were able to access everything on the 10.1.1.0/24 . so this appears to be an android issue ????

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.