Can't ping or access router on OPT1 interface

bjaffe

Your router at 192.168.4.2 can be accessed from inside the subnet, but not outside. Does it have a default gateway set? If it has the option, it needs to be set to 192.168.4.1 (OPT1 address of pfSense). If not, the requests will make it to the router but it'll send the replies to a black hole.

cubiche

is the default gateway setting on the WNDR3800? I have WAN\internet set to DHCP(wired) right now and there is no option for Gateway. If i set it to Static (Wired) I get the option for GATEWAY. that is the way I used to have it set but, decided to change it because OPT1 is set to static 192.168.4.1.

Derelict

Consumer routers generally do not have the facility for a default gateway on the LAN side.

You might be able to create a static route for 0.0.0.0/0 with a destination of the firewall interface.

cubiche

do I setup the static route on the Netgear router. If so, how?

Derelict

Don't know, man. This is not a netgear forum.

cubiche

Derelict, Thank you for reply.
I set it up like this: Destination-192.168.4.0/24 Interface-WAN Gateway-192.168.4.1 Is this correct?

Derelict

No. 0.0.0.0/0 dest 192.168.4.1

If probably does not support a default route - you're trying to use gear for something it is not designed to do - but it's worth a try.

johnpoz

Your other option when dealing with a device that does not allow routes, default route/gateway on its interface is to source nat it.. So now your traffic coming from your lan, pfsense would nat that to look like it came from pfsense IP In opt network, just like when you nat to the public internet. So in that case your netgear just sees someone talking to it from its own network..

While this works, to be honest just get a real AP ;) hehe Can you put 3rd party firmware on that wifi router.. Something like dd-wrt, openwrt, tomato all allow putting a default gateway on the lan interface so you can access the gui from another network.

cubiche

The router is flashed with Gargoyle which I think is Openwrt. I did setup the static route on the netgear like derelict suggested but, that didn't help. I still can't access the router from LAN on 1.1 iP range. I would also like to access folders on the computer connected to the router.

I'll try source nating. Can you provide a quick how-to?

Thanks johnpoz

cubiche

please check out the attached pics. is this where i setup routing and are those entries okay?

![gargoyle routing.png_thumb](/public/imported_attachments/1/gargoyle routing.png_thumb)
![gargoyle routing.png](/public/imported_attachments/1/gargoyle routing.png)
![gargoyle basic.png_thumb](/public/imported_attachments/1/gargoyle basic.png_thumb)
![gargoyle basic.png](/public/imported_attachments/1/gargoyle basic.png)

johnpoz

your not using it as a gateway any more, change it to a wireless bridge/repeater mode - now it might allow you to set default route on your lan interface..

doktornotor

Yes, that thing should be set up as a dumb bridge, certainly not router/gateway.

cubiche

Ok, I set the router to wireless bridge/repeater and now I can ping the bridge IP (192.168.4.2), the Gateway IP (192.168.4.1),
and Insteon hub at 192.168.4.51 all from the LAN but, i can't ping the computer. is this a pfsense issue or window/antivirus?

Thank you all for the help.

johnpoz

Out of box windows firewall will block pings from anything other its lock network u can change it to allow

cubiche

Got it, Thanks. Am I bridging to the OPT1 (192.168.4.1) interface? also is OPT1 handing out DHCP?

johnpoz

Your running your wifi router as ap yes that is bride ypur opt1 could be dhcp unless u have other dhcp on that network typical would be dhcp on pfsense

cubiche

you're right again, OPT1 is setup as DHCP server.