New to pfsense, and now arp troubles…
-
only LAN has an address, being 192.168.1.1 (mask 255.255.255.0) i haven't configured ipv6 (i'd like to) OPT1 has no address, and i'm not sure if they're bridged, but clients connected through the SRW2024 can't access the router either way. and i haven't set up separate subnets or VLANs yet either
LAN and OPT1 need to be on different subnets, with separate DHCP servers managed by the pfSense box.
If you would like to pass traffic between the two networks, setup two firewall rules:
1. on the LAN page, allow any traffic from source OPT1 Network
2. on the OPT1 page, allow any traffic from source LAN Networkthe CISCO AIR-1252K9-AG AP should only be an access point as a static ip, e.g. 192.168.1.2, on the LAN. DHCP should be off on this device. HowTo for DDWRT - https://www.dd-wrt.com/wiki/index.php/Wireless_Access_Point#Long_Version_for_Same_Subnet
What IP addresses are the OPT1 network receiving? Is DHCP disabled on the Cisco AIR device? What OS is running on the Cisco device?
-
OPT1 has no ip address or dhcp running, the cisco is set up with a static ip in the main subnet (192.168.1.5), and it worked just fine prior to my network falling on it's face yesterday…should i move the AP to the OPT1 interface and bridge the networks?
-
What is the ip of your pfSense machine?
In your original post you said only OPT1 devices can access the internet, correct? What is the ip/subnet of OPT1?
-
i may have reversed the OPT1 and LAN interfaces, and the ip is 192.168.1.1 (mask 255.255.255.0) in LAN
-
has this network ever worked? If so, is it possible that the SRW2024 died?
-
it worked great for a couple of days…i think i made the switch from dd-wrt on Thursday, but then, seemingly randomly, everything just quit working...and it's quite possible that something within the SRW2024 died, but traffic still flows between many of the hosts
-
Sure thing…while it's not everything, each link shown is gigabit, wireless clients are all Wireless-N or above, and only the pc's on OPT1 (those connected via the teg-s50g) can access the pfsense box and/or the internet. also, the other clients are still connected, but only spew arp requests and never get replies... I hope to be able to transfer the connections from the teg-s80g to the srw2024, removing it entirely. My dhcp screenshots are forthcoming, since they're on my main rig at home..and i have access to a standalone packet sniffer if that will be of any use
This is the post I am referring to.
I am assuming that your picture is correct.
The problem is that your OPT1 devices cannot access the internet/pfSense machine?
Where was the ddwrt machine placed previously? On the LAN or OPT1 side? Is it possible the OPT1 devices have lost their IP address assignments because there is no DHCP server any longer on that network?
-
the dd-wrt box was where the pfsense box currently is, and before the change-over, both the pfsense box and srw2024 were not connected. the only things that work are those directly connected to the pfsense box, by bypassing the main switch…but i'll have to check the bridge setting to see if that helps
-
so i've changed some things about…specifically, the AP is now directly connected to the OPT1 interface with a 192.168.2.0 subnet, and clients can connect and be assigned an IP...how should i adjust to give these clients web access? and there was no bridging taking place before
-edit: It lives! must have been pure luck that it worked before...i changed my AP back to the LAN, leaving OPT1 active, but disconnected...and otherwise my network has risen from its own ashes...Thanks and huzzah!
-
so i've changed some things about…specifically, the AP is now directly connected to the OPT1 interface with a 192.168.2.0 subnet, and clients can connect and be assigned an IP...how should i adjust to give these clients web access? and there was no bridging taking place before
-edit: It lives! must have been pure luck that it worked before...i changed my AP back to the LAN, leaving OPT1 active, but disconnected...and otherwise my network has risen from its own ashes...Thanks and huzzah!
anytime! Glad you got it working
