Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [ Solved ] WAN Connected , No LAN Internet Access

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 3 Posters 5.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ZedfulZ Offline
      Zedful
      last edited by

      Hello ,
      I've setup pfsense box with only 1 NiC [ x2 VLANS ]

      re0 ( LAN10  , WAN20 )
      and Everything works fine

      but after rebooting pfsense
      i get no internet access on lan side !

      pfsense can check for updates , can download packages via command line , ping etc ..
      i can access webgui too from lan clients and ping other lan clients but no internet access for the whole lan net .

      rebooted for second time didn't help ..  :-\

      reset to factory , setup vlans again every thing works fine and got internet access .
      rebooted pfsense , i get again no internet access on lan
      note that all other settings are default , I just have setup vlans .
      couldn't figure out the problem , why do i have internet but after 1 reboot i have to reset to factory to get internet again ..
      very strange .

      here's the diagram and switch settings :

      Van 10 lan
      Van 20 wan
      Port 1 2 3 untagged 10
      Port 4 tagged 10 and tagged 20
      Port 5 untagged 20

      Pfsense :
      Lan int : VLAN10 192.168.1.1/24
      Wan int : VLAN20 DHCP
      tried to set modem in bridge mode and set-up ppoe WAN , same problem , no internet after the first reboot .

      1 Reply Last reply Reply Quote 0
      • V Offline
        viragomann
        last edited by

        Hello,

        please check some things:

        • "Block private networks" in interface settings has to be unchecked.

        • Do you have firewall rules on LAN interface which permit access to the internet. By default there is an allow-any-to-any rule, but since you have set up manually your LAN as VLAN, you have also to set the rule manually.

        • Ensure that the Outbound NAT rules are set correctly. Or post a screenshot.

        1 Reply Last reply Reply Quote 0
        • I Offline
          ipfftw
          last edited by

          The port on the switch would go down and up, if its a cheap switch might confuse it. is it a cisco switch? i would personally connect the modem to the router and forgo vlans if you can help it. even you can still run rj-11 over the same rj-45 ports if thats the issue. Or maybe you only have one nic in pfsense? do the port 1 and port 2 computers need to lease an ip from the adsl modem? for that i would use 1:1 nat.

          You could try making the gateway of the LAN network the vlan interface on the switch… that way it wouldnt confuse the clients when it goes down? Does the NIC have to support vlans in hardware / driver and does it? or does pfsense just always support vlans on all cards?

          i dunno im just guessing.

          1 Reply Last reply Reply Quote 0
          • ZedfulZ Offline
            Zedful
            last edited by

            Thanks " viragomann "
            for your replay , but all of them are set correctly , even with manual vlans the outband/firewall rules created automatically .
            otherwise it shouldn't work the first time I set them up .

            
@ipfftw:

> The port on the switch would go down and up, if its a cheap switch might confuse it. is it a cisco switch? i would personally connect the modem to the router and forgo vlans if you can help it. even you can still run rj-11 over the same rj-45 ports if thats the issue. Or maybe you only have one nic in pfsense? do the port 1 and port 2 computers need to lease an ip from the adsl modem? for that i would use 1:1 nat.
> 
> You could try making the gateway of the LAN network the vlan interface on the switch… that way it wouldnt confuse the clients when it goes down? Does the NIC have to support vlans in hardware / driver and does it? or does pfsense just always support vlans on all cards?
> 
> i dunno im just guessing.

I'm guessing too that you said some wrong ideas about how and what should work .
Yes , only 1 nic and it supports vlans .
TP-Link easy smart switch .

with one nic i can't do what you expect without vlans since you need at least to interfaces wan/lan
and couldn't find a way to create sub-interface also even if i was able to , it might lead to bad network issues so vlans is the only solution I could use .
& thanks for your replay .
            1 Reply Last reply Reply Quote 0
            • ZedfulZ Offline
              Zedful
              last edited by

              Solved :
              It was hard disk issue , bad sectors and couldn't read files correctly .
              since reset to factory defaults makes the new data applied to ram directly .. it's OK .
              but after reboot and load settings from Disk ..  Nothing is OK .
              I noticed it won't read queue statistics in webgui says I have to set traffic shaper while it's already set .
              and even after resetting to factory defaults , some rules doesn't work as expected after setting them up.
              also by many reboots I noticed there is a fast warning messages about mounting disk in pfsense boot screen .

              now everything works fine after replacing the disk .

              Thanks anyway  :) .

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.