Pfsense + Thomson ST510
-
Im going to try the commands tonight - will keep you posted!!
Thanks
-
-
Thanks for all your help!!!
-
Ok. :)
Those routes will only stay in place until your re-boot the pfSense box so to make them run each time the box is booted install the shellcmd package and them add them to it.
The other thing is that this depends entirely on Karoo always giving you the same IP details, or at least the same gateway. They may or may not do that. Their setup seems so odd it's impossible to even speculate! If they don't then what is needed is a script to enter the routes based on whatever gateway is given. There were several comment to that effect in the bug report but nothing I've actually seen.
It would be great to get a second oppinion on just what's going on here. Anyone?
Also I would definitely suggest a post on the Karoo forum. You fellow subscribers will have faced this before any will probably have more info.
Steve
-
Hi, Ive added package ShellCMd and have added those commands - and it works!!
I do have one little problem though and if I could solve it everything would be perfect!!
For some reason I'm getting dropouts when browsing the internet…. under Interfaces - I have errors 0/12.
Any Ideas ?
-
Which interface is that?
If it's the wifi interface then it's to be expected. For example my own home ath interface:Status up MAC address 00:11:f5:**:**:** - Askey Computer IPv4 address 192.168.10.1 Subnet mask IPv4 255.255.255.0 IPv6 Link Local fe80::211:f5**:****:****%ath0_wlan0 Media autoselect mode 11g <hostap>Channel 8 SSID ******** BSSID 10:bf:48**:**:** Rate 48M RSSI 16.5 In/out packets 288630/321309 (32.64 MB/327.74 MB) In/out packets (pass) 288630/321309 (32.64 MB/327.74 MB) In/out packets (block) 950/0 (184 KB/0 bytes) In/out errors 3/119 Collisions 0</hostap>What do you mean by drop outs?
Steve
-
No, errors are on the WAN interface… by drop outs I mean that at certain times the is no response from the internet or takes an age to load a web page. Ive changed to static NAT instead of Automatic and seems to be a bit better.
Thanks
-
Nothing in the logs when that happens?
Chaning the NAT to static shouldn't make any difference. It only takes any action when you add or remove interfaces anyway.
Something occurs to me. The fact that you have such an enormous subnet on the WAN could be causing a problem here. If you're trying to access some resource that happens to be at address 77.x.x.x then pfSense will try to access it directly without going via the gateway. It may be waiting for something to timeout before then sending traffic via the gateway.
Normally you could avoid that happening by specifying the gateway in the firewall rules on your LAN interfaces and disabling the 'negate rules' in System: Advanced: Firewall and NAT: However with your default gateway setup I'm not sure what would happen. :-\See if you can spot a link between the delay and what site you're trying to access.
Steve
-
Hi Stevenw10
Nothing in the logs as far as I can see, I've left NAT on Manaul and I've also noticed that the 'dropout' was pages hanging on "Resolving host" so I suspect a DNS issue, As a test I've pointed one of my hosts to '192.168.1.254' which is the Thomson and also '8.8.8.8' As A Secondary, and so far I've seem to have no drop outs. Presently my clients were using the LAN address of PFSense for DNS.
I've not been on that machine today but will be later on so will let you know my findings…..
IF it is DNS, I wonder what can be done to fix it, dynamically I get DNS servers from my ISP ?
Thanks - All of your help is GREATLY appreciated
Chris.
-
You can add DNS servers to pfSense that it then uses for the DNS forwarder. Go to System: General Setup: in the webgui. By default the 'Allow DNS server list to be overridden by DHCP' box is checked but you can uncheck that and enter any public DNS servers if Karoo's are a bit flaky. I use 8.8.8.8 and 8.8.4.4, Google already knows everything about me anyway! ::)
Steve
-
OK I'll let you know my findings!!
Thanks
-
Looks like it was a DNS issue, I've set 8.8.8.8 in general setup and set KC's gateway as the gateway for that DNS server and so far all is well!!
No dropouts!!
:)
