Can't ping from LAN to pfSense / WAN

roguewave

Wasn't sure where to put this topic, but I'm fairly certain it's a routing issue - so I'm putting it here.

Network:
-pfSense 2.2.2 on Netgate m0n0wall
  Since this build isn't yet complete, the WAN is connected to a LAN port on the production network (192.168.0.0/24). Yes I've unchecked the box to ban private networks.
-Ubiquiti Edgerouter
-Cisco SG300-20 (L3)

-I can ping downstream from firewall to a host, but tracert from host to FW stops at the router's switch-connected inbound interface.
-Static routes set at switch, router, and FW
-Default routes set from switch to router and router to FW

Problems:
-For some reason, I can access pfSense web configurator from inside a switch VLAN, but I can't ping the FW interface (??)
-The router can ping out to the internet. For some reason, the point to point between the router and firewall is (or isnt??) getting advertised to the switch VLANs. Not sure why I can access the pfSense portal but not ping it, and do I have to add a NAT / FW rule to advertise the WAN down to the VLANs?

Derelict

Not sure why I can access the pfSense portal but not ping it

Firewall rule on pfSense interface allowing only TCP and not any?