No Internet Access Via Public Static IP
-
Hi there
I have kinda inherited a network that has a 5 static public IPs (.218-222) with a gateway of (.217) and need some help understanding where im going wrong please. IP addresses .218,219,220 are already used for exiting proxy and mta's. So, in PFSense I have setup my WAN IP to the next available Static IP: .221 with a Gateway of .217, however, no matter what I do I cannot ping to .217 from my PFSense box. If I enable DHCP on WAN, I get a 192.168.15.101 IP with a Gateway of 192.168.15.1 Fiber Router. After checking the other boxes they are not on this range and similarly setup to my WAN config above, so I have no idea what I am doing wrong. Could anybody advise me on what to look for please? Do I need to setup extra routes or something?
-
A small network map would be helpfull to discuss your issue.
So your fiber router is in transparent bridge mode. Behind the router you allready have three boxes which use the IPs .218 to .220, all concected to a switch? And pfSense is now also connected to that switch? Or got I something wrong?
-
Wrong subnet mask is my first guess, likely should be /29 (255.255.255.248) in that case, but verify with info provided by your ISP.
-
@ viragomann, here is a small diagram:
@ cmb, Apologies, I should have mentioned, indeed the subnet is 255.255.255.248 / 29
Somebody on the PFSense IRC channel suggested I setup my WAN interfance and uplug/re-inplug the Fiber Router as the ISP might not have picked up the changes, however, also a no go :(
Also just to clarify, we have no direct access to this fiber box/router, its the property of the ISP. They just give out the IPs and we route them as we wish.
-
should be pretty straightforward.
are you sure the wiring is ok? (check status–>interfaces for errors/duplex mismatch)
-
should be pretty straightforward.
are you sure the wiring is ok? (check status–>interfaces for errors/duplex mismatch)
@ heper, WAN Interfance: In/out errors 0/0, will recheck the wiring, but it does pickup DHCP though so I don't see how it can be that.
-
I'm not sure if you understand CMBs input correctly.
The correct subnet mask must be set in pfSenses WAN interface configuration, so that the gateway is within the subnet of WAN address.So your fiber box has an internal switch and you are sure that there is no special setting on the port pfSense is connected? In doubt try another port.
-
I'm not sure if you understand CMBs input correctly.
The correct subnet mask must be set in pfSenses WAN interface configuration, so that the gateway is within the subnet of WAN address.So your fiber box has an internal switch and you are sure that there is no special setting on the port pfSense is connected? In doubt try another port.
Hi, no I got what he meant with the subnet part. I did configure the correct subnet on the WAN IP .221 with subnet /29, and pointed the default gateway to 217. And as far as I can tell, the rest of the boxes are setup that way too. Also, there are no more ports available on this fiber box, the previous person used 2,3,4 and left 1 open, which I am trying to use now. Ile attempt to use one of those ports over the weekend when things are quiet otherwise ild have 4000 users screaming at me lol
-
Just to update, I have figured out my problem. After troubleshooting and speaking with the ISP, they assign port 1 to DHCP for when they have problems ons-site, so I cant use it… I can only make use of port 2,3 and 4. Wish they would have clarified that after the last few calls, what a shit router sigh... Ile end up using something like virtual ips and a mikrotik/cisco from here on out. Thanks for everyone's help.