Getting LAN to talk to LAN2 [SOLVED]
-
I have two LANs on my Pfsense box. LAN 192.168.1.1/24 and LAN2 192.168.2.1/24
Both can access the internet but they can't talk to each other. I have tried to create a few rules,
but for some reason I can't get this to work. Could someone please point me in the right direction
or give me an example.Any help would be greatly appreciated.
-
https://doc.pfsense.org/index.php/Bypassing_Policy_Routing
https://doc.pfsense.org/index.php/Firewall_Rule_Troubleshooting
-
Thanks for your reply.
I tried bypassing policy routing but that didn't seem to change any thing assuming I did it right.
Action; Pass
Interface:LAN
Address Family:Ipv4
Protocal:any
Source:any
Destination:192.168.1.0
Gateway:defaultAction; Pass
Interface:LAN2
Address Family:Ipv4
Protocal:any
Source:any
Destination:192.168.2.0
Gateway:defaultI checked the log and it not showing anything blocked.
Thanks
-
https://doc.pfsense.org/index.php/Firewall_Rule_Processing_Order
-
Ok I have made some progress. I did it wrong. It should look like this
Action; Pass
Interface:LAN
Address Family:Ipv4
Protocal:any
Source:any
Destination:LAN2 net
Gateway:defaultAction; Pass
Interface:LAN2
Address Family:Ipv4
Protocal:any
Source:any
Destination:LAN net
Gateway:defaultI can ping a machine on lan2 from my lan1 machine, but I can't ping a lan machine from lan2.
It may be my priority like you say.
-
Your LAN 2 rule is TCP-only. Ping is ICMP. Should be any like the LAN rule.
-
ok everything is good. I didn't notice until I posted the picture that my protocol on LAN2 was set to TCP.
I tried these rules several time before, but I always had them in the wrong order.
Thank You so much
ptt -
You're welcome, glad to be of help