Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    New SG-4860 but can't manage to get an Internet connection

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    7 Posts 4 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      Chti
      last edited by

      Greetings everyone

      So, I decided to make the jump and purchase a more evolved firewall for my home network and bought the SG-4860 appliance.

      While I thought the in-depth configurations of VLANs or VPNs would be difficult, I am already struggling in the initial setup. :)
      I can't seem to get any connection through (not even the firewall checking if it is up-to-date).

      So here is where I come from:

      I have an older modem that is in bridge mode and that is currently hooked up to an ASUS RT-N66U with the Merlin custom firmware.
      It has been working great for the past years. I didn't have to do anything special on the ASUS, it pretty much worked out of the box.

      My goal is to replace the ASUS with the SG-4860 and to use the ASUS as a simple access point.

      Now I'm sure I have missed some very obvious step in the pfSense setup process, but I just can't get it to work (even after watching like 20 videos):

      So here's my setup:

      • I do not have a static address from my IPS
      • My modem is in bridge mode and I'm pretty sure the DCHP server is off (there is no option to activate/deactivate it bridge mode anyway)
      • My modem admin is accessible via 192.168.100.1
      • My external public IP is 87.10.10.10 (made up)
      • The admin info screen of my modem says the modem's Mac address is XX:XX:XX:XX:50  (I replaced the actual numbers with XX)
      • The sticker on the modem's back gives the following info:
            * CM MAC: XX:XX:XX:XX:50
      • EMTA MAC: XX:XX:XX:XX:51
      • WAN-MAN: XX:XX:XX:XX:52
      • WLAN-MAC: XX:XX:XX:XX:53

      In the pfSense menu, I entered the following settings:

      In SYSTEM/DNS SERVERS: I entered my ISPs DNS servers but entered 'NONE' for the "Use Gateway" setting
      The 'Use gateway' seems to offer the following options:
          * none
          * WAN_DHCP - wan - 87.10.10.10

      • WAN_DHCP6 - wan - dynamic

      In INTERFACES/LAN
          *Enabled is ON
      *IPV4: DHCP or Static << *IPV6: DHCP6 or Static6 <<
      In either case, what do I put in the DHCP CLIENT section if DHCP is selected (or in the STATIC section if STATIC is selected)?

      I currently entered STATIC IPv4 using the address 192.168.1.1

      In INTERFACES/WAN
          *Enabled is ON
      *IPV4: DHCP or Static << *IPV6: DHCP6 or Static6 <<
      I currently entered DHCP and DHCP6
      In the MAC address I entered "XX:XX:XX:XX:50" the address of my modem

      Nothing is entered in the DHCP Client Configuration

      So I probably missed many things, but can anyone help me get it running? I've been trying for 2 days now and still can't even get the basics right :/
      I'm sure that an additional reason could be that I did not reboot the modem and pfsense appliance between all my attempts at settings.
      So maybe I had it right at some point, but I just didn't know it actually worked.

      Anyway, ANY help is greatly appreciated!!

      Happy SG-4860 owner

      1 Reply Last reply Reply Quote 0
      • KOMK Offline
        KOM
        last edited by

        I can't seem to get any connection through (not even the firewall checking if it is up-to-date).

        How are you testing, via a client on the LAN or from pfSense WebGUI interface?  If client, how is it configured? DHCP or static IP?  If your client is misconfigured then your testing won't show anything about pfSense.

        I currently entered DHCP and DHCP6

        Unless you know your ISP is running a DHCP server for you to grab a lease from, you should change your WAN IP address from DHCP to Static IP4 and try using your public IP address for WAN IP.  I would suggest turning off IP6 unless you specifically need to use it.

        1 Reply Last reply Reply Quote 0
        • C Offline
          Chti
          last edited by

          I am testing with a laptop connected via ethernet to the LAN port of the SG4860. I can log into the pfSense admin panel just fine that way.

          Because I get a new external IP every other week from my ISP I am not sure that I should enter a static IP. Looking at the interface status screen, I can actually see it assigned an external IP, so something must be working

          Attached is the status screen of my interfaces… if that helps :)

          status.jpg
          status.jpg_thumb

          Happy SG-4860 owner

          1 Reply Last reply Reply Quote 0
          • H Offline
            hda
            last edited by

            @Chti:

            …
            Attached is the status screen of my interfaces... if that helps :)

            I do not see an IPv4 address on Interfaces(WAN).
            If you have bridged, then the expectation is your IPv4 address on pfSense, not on MoDem.

            Are you sure you/pfSense have to make request to ISP with DHCP ? Maybe with PPPoE ?
            You have to know how your old situation worked, before stepping up to pfSense.

            1 Reply Last reply Reply Quote 0
            • C Offline
              Chti
              last edited by

              Hi

              I appreciate the help.

              Attached is the screenshot of my current Asus modem that works just fine with my bridged modem.

              I didn't enter any fixed modem IP or MAC address. It's not a PPPoE connection either so I don't have any user name/pwd to enter.
              My understanding from my current setup is that I get it automatically from the ISP.

              I do not see an IPv4 address on Interfaces(WAN).
              If you have bridged, then the expectation is your IPv4 address on pfSense, not on MoDem.

              Not sure I understand.
              When I look at the Interface status screen (WAN section),
              the Gateway IPV4 address seems to be the external IP my ISP assigned me, so doesn't that mean that the bridge is already successful?

              asus.png
              asus.png_thumb

              Happy SG-4860 owner

              1 Reply Last reply Reply Quote 0
              • H Offline
                hda
                last edited by

                The "Gateway IPv4" is not the "IPv4-address". Look in Status-Interfaces(LAN) and see an entry called "IPv4 address".
                It is not there in the WAN section ? should appear at Interfaces(WAN) too…

                And/but why did you say you put MoDem MAC-address in pfSense Interfaces(WAN) config ?

                Find out your MoDem I/O actions, because it has to assist SG4860-pfSense, which is not just consumer plug&play.

                1 Reply Last reply Reply Quote 0
                • C Offline
                  cmb
                  last edited by

                  @Chti:

                  In the MAC address I entered "XX:XX:XX:XX:50" the address of my modem

                  That creates a conflicting MAC address, assuming your modem is staying as is, which will break any ability to talk to the modem. Clear the MAC address field on WAN and reboot the 4860 so it gets its native MAC back. Then reboot the modem. After that, I'm guessing it'll probably work.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.