Double NAT problem

JKnott

How is your equipment connected?  I can't imagine any scenario in which a computer could see both, unless somehow connected to both.  Normally, when you have double NAT, you see only the one you're connected to.

balubeto

@JKnott:

How is your equipment connected?  I can't imagine any scenario in which a computer could see both, unless somehow connected to both.  Normally, when you have double NAT, you see only the one you're connected to.

My LAN is composed of a hardware firewall, a NAS, a network printer, two smart TV and 6 computers with Windows 7 SP1. Also, I have a VDSL2 router, connected to the WAN port on the firewall, which provides Internet to the LAN.

All of these network devices have fixed IPs and have the DHCP disabled.

So why computers even see the router's NAT?

Thanks

Bye

balubeto

I tried a new configuration of the firewall but the devices connected to the 192.168.1.0 network can still see the 10.0.0.0 network NAT causing malfunctions to the main network.

If I disable the NAT of the 10.0.0.0 network, the first network returns to work properly but I have no more Internet on this network.

So how should I do to make sure that the main network does not see the secondary network NAT?

The new firewall (192.168.1.1) and VDSL2 router (10.0.0.1) configuration  is:

Thanks

Bye

ptt

???  LAN: 192.168.1.1 with "GW_LAN: 192.168.1.1"  ?

https://doc.pfsense.org/index.php/Connectivity_Troubleshooting#LAN_Interface

balubeto

@ptt:

???  LAN: 192.168.1.1 with "GW_LAN: 192.168.1.1"  ?

https://doc.pfsense.org/index.php/Connectivity_Troubleshooting#LAN_Interface

So, what should I change?

Thanks

Bye

balubeto

@balubeto:

@ptt:

???  LAN: 192.168.1.1 with "GW_LAN: 192.168.1.1"  ?

https://doc.pfsense.org/index.php/Connectivity_Troubleshooting#LAN_Interface

So, what should I change?

Thanks

Bye

If I set the LAN interface to 192.168.1.254, the Internet does not work anymore. Why?

Thanks

Bye

viragomann

You should not set any gateway on LAN interface if the pfSense is the LAN gateway.

balubeto

I also tried to change the LAN gateway, but it is always offline.

Where am I wrong?

Thanks

Bye

hda

@balubeto:

Where am I wrong?

Besides Trial & Horror, read #12 again. Remove that gateway for the LAN…

balubeto

@hda:

@balubeto:

Where am I wrong?

Besides Trial & Horror, read #12 again. Remove that gateway for the LAN…

I deleted the gateway that was always offline.The router's NAT causes some malfunctions and slowdowns in the LAN.

If, though, off the NAT the LAN returns to work, but the Internet does not work on the LAN.If I put the router in Bridge mode (disabling its NAT and disconnecting the Internet connection) I should enable the PPPoE client on the firewall to manage the Internet on the LAN.

In this case, but, the analog phone and fax machine connected to the router will not work.

So how do I solve this problem of the phone and fax?

Thanks

Bye

balubeto

If I had to do in this way:

I would still have the Internet service on the LAN?

Thanks

Bye