Pf sense firewall
-
i am using my pf sense computer/server as firewall for my other servers but i connected it with a dd-wrt repeater but
my server won't receive any IPv4 addressi use pf sense only as firewall
Main Router: Linksys ea6700
IPv4: 192.168.1.1DD-Wrt Client: Linksys ea4700
IPv4: 192.168.1.3Pf Sense Firewall
IPv4: 192.168.1.123Sorry for my english
-
DHCP server: 192.168.1.1
does anybody have a solution?
-
How are those boxes connected? Where is the server connected?
How is pfSense configured?Steve
-
DD-wrt client -> WAN IPv4:192.168.1.123
LAN 1 -> w2k8r2 server 1 IPv4:N/A
LAN 2 -> w2k8r2 server 2 IPv4:N/A
LAN 3 -> w2k8r2 server 3 IPv4:N/AWAN IPv4 Configuration Type: dhcp
LAN 1,2,3 IPv4 Configuration Type: dhcp -
whats your lan subnet on pfsense?
did you enable dhcp on pfsense? -
WAN subnet: 255.255.255.0
LAN 1,2,3 subnet: N/ADidn't enable DHCP server cause My main router is the dhcp server
-
So you are using the DD-WRT box for DHCP for the whole network but that is on the WAN side of pfSense.
So do you have all the interfaces in pfSense bridged? You are running it as a transparent firewall?Steve
-
I tried But didn't work
And yeah it is a transparent firewall -
Ok, if all the interfaces are bridged together then only one of them should have an IP. That could be the bridge interface itself or the WAN as you have it but the others should all be type 'none'.
Do you have firewall rules to allow the DHCP requests from the severs on the LAN? Are you seeing anything in the firewall logs?Steve
-
Allowed any protocol from the dhcp server
But it is still not workingI can give you Access to My firewall control panel if you want
-
If you're running a DHCP server on the pfSense LAN interfaces then there are rules put in place automatically to allow the DHCP traffic. For example:
# allow access to DHCP server on LAN1 pass in quick on $LAN1 proto udp from any port = 68 to 255.255.255.255 port = 67 label "allow access to DHCP server" pass in quick on $LAN1 proto udp from any port = 68 to 192.168.1.1 port = 67 label "allow access to DHCP server" pass out quick on $LAN1 proto udp from 192.168.1.1 port = 67 to any port = 68 label "allow access to DHCP server"
Since you are not running a DHCP server these rules will not be in place and your clients won't be able to send DHCP requests to the DD-WRT box.
You may be better off using the DHCP relay though I've never tried it in this type of setup.
Steve
-
I tried But didn't work either
But you don't want access to my pf sense?
-
What did you try?
If you have the interfaces all bridged together try simply disabling the firewall completely, at the console: 'pfctl -d'. If you still can't get dhcp leases through it then you have some connection problem.
Steve
-
i did but still dind't get it to work
tried:
dhcp relay
Bridge all interface's
using static IPv4
dhcp server
disable firewallbut when i connect the server direct to my dd-wrt router it gets a dhcp adress in a few secs
-
To run as a transparent firewall you must have the interfaces bridged.
If you aren't running transparent then you must have a separate subnet on the lan side.
Steve
-
Abandoning this project didn't get it work
Thx everyone for ther help