Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64)
-
Given that you're using static addresses, pfSense has nothing to do with the phones disconnecting. All it would do is hand out addresses, if the phones were configured for DHCP. The problem is much more likely to be between the phones and access point. Given my experience with iPhones, my money is on a problem with them. Does your AP have logs you can examine?
PfSense running on Qotom mini PC
i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
UniFi AC-Lite access pointI haven't lost my mind. It's around here...somewhere...
-
@hugoeyng said in Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64):
1 access point connected to the switch (gateway)
What is this suppose to even mean?
That term has zero to do with an AP or a switch..
I have multiple iphones and ipads on my network and have no such issues - as mentioned already, pfsense has zero to do with your device connected to some AP..
-
@johnpoz if I connect Wi-Fi (AP) directly to the router (WAN) the iPhone works as expected. Without disconnecting.
When I connect the AP to my network (LAN) through pfSense, the connection will blink.
See that I do not claim to be pfSense, I just look for someone who has had similar experiences.
-
@NogBadTheBad TP-LINK TL-841ND
-
@JKnott Given my experience with AP, I would buy another one if I know it would work fine.
I have no idea if is there a log. But I will try to find out.
-
@hugoeyng said in Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64):
TP-LINK TL-841ND
That's a router. Is it running as a router still or in some sort of Access Point mode?
When the iphones disconnect what actually disconnects? They loose wifi? Or just connectivity across it?
Steve
-
@hugoeyng said in Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64):
TL-841ND
that is a router, not an AP... You have given no info of how you set it up when you say you connect it, so for all we know you have some sort of nat going on where this devices wan is the same as its lan, etc. etc.
If you want to use that device as just an AP, then connect it to your lan network via one of its LAN ports, turn off its dhcpd and give it an IP on your lan network, etc.
And again - pfsense has ZERO to do with your wireless client connecting to the wireless network - ZERO!!! And if asking if someone has sim issues you should be asking on tplink forum - or at min given the make and model of whatever crap device your using to see if other users using same device..
An intelligent man is sometimes forced to be drunk to spend time with his fools
If you get confused: Listen to the Music Play
Please don't Chat/PM me for help, unless mod related
SG-4860 24.11 | Lab VMs 2.8, 24.11 -
@stephenw10
"That's a router. Is it running as a router still or in some sort of Access Point mode?"- it is running in "some sort of Access Point mode"
"When the iphones disconnect what actually disconnects? They loose wifi? Or just connectivity across it?"
The IPhone wi-fi icon stays "on" most of the time but without Internet connection.
Today I am "behiand" another firewall, based on FreeBSD too. The same behavior occurs.
Again, I am not claiming or supposing the problem is FreeBSD, or pfSense. But ...
-
@johnpoz said in Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64):
that is a router, not an AP... You have given no info of how you set it up when you say you connect it, so for all we know you have some sort of nat going on where this devices wan is the same as its lan, etc. etc.
If you want to use that device as just an AP, then connect it to your lan network via one of its LAN ports, turn off its dhcpd and give it an IP on your lan network, etc.
And again - pfsense has ZERO to do with your wireless client connecting to the wireless network - ZERO!!! And if asking if someone has sim issues you should be asking on tplink forum - or at min given the make and model of whatever crap device your using to see if other users using same device.."If you want to use that device as just an AP, then connect it to your lan network via one of its LAN ports, turn off its dhcpd and give it an IP on your lan network, etc."
It is running like you described.
Thank you for your kind reply. :)
-
normally internet prob has to do with dns - most all of these mobile devices check for a specific dns query, and then try and access something specific to tell if they have internet or not..
Why don't you test the very basics - can you ping pfsense lan IP... hurricane electric makes an app that allows for you to do simple dns queries and pings and such on your iphone.
If I recall it tries to open
https://www.apple.com/library/test/success.htmlMaybe your device is detecting a bad IPv6 network and trying to use that, which doesn't actually have internet, etc.
Pfsense can not tell the difference between an android or wireless asus laptop and or your iphone.. It can not even tell if the device is wireless or not... It doesn't care!! If your having issues with some device then you need to troubleshoot the specifics of the problem..
First thing to do is actually validate you can even talk to pfsense - ping its lan IP from your device!! This free app works on iphone to do basic troubleshooting and give you info.
https://networktools.he.net/Can your device do dns query? Are you running something like IPS or pfblocker that could mess with how some iphone detects internet? Are you running any captive portal?
Also many devices can have issues coming out of standby, etc.. what specific make and model and os version are you running. If you can not ping pfsense lan IP then its your wireless. If you can ping pfsense lan IP - then you need to look to what else could be causing your device to think it doesn't have internet.. dns? Are you running proxy or captive portal, etc.
But if you can not ping pfsense lan IP - then no nothing is going to work..
-
@johnpoz First of all, thank you for so detaild answer.
I can ping pfSense from my device (IPhone).
Reading your explanation I think that the most probably, in order, is:
-
"can have issues coming out of standby". When th display is on (in use), it seems that the problem does not occur.
-
"Maybe your device is detecting a bad IPv6 network". I considered checking the two options bellow.
- " Are you running proxy?" I am using Squid Proxy.
- "Can your device do dns query?" Yes. Rules on pfSense forces only pfSense DNS.
-
-
Those first 2 options prefer and ipv6 dns entries has nothing to do with client using ipv6 to go to the internet..
As to proxy.. Do you have the issue if you turn off the proxy? Are you running transparent or explicit?
You do understand when using a proxy - the proxy does the dns lookup.. But how is it your forcing traffic that is destined to pfsense lan address out a "balanco" gateway??? That makes NO sense!!!
-
@johnpoz I use transparent proxy. I Tried to disable proxy and also bypass my IP. Nothing help.
I will try to change frequency in AP. I should tried it earlier.
-
I don't see how a client could use pfsense as dns - when you force it out a gateway!!! That rule is just not right.. There should be no gateway set on the rule that allows access to pfsense.
-
I agree, there should not be a gateway set on that rule.
-
which could cause all kinds of problems with devices that try its local dns first for checking if internet, and then later check say hard coded 8.8.8.8 or some other public dns..
your rule states hey if trying to go to local IP for dns - shove it out your gateway.. So how would it actually get to your lan IP?
To be honest your rules as listed would break dns completely.. I don't see how anything would work for dns with those rules. You would have to be using explict proxy for internet to work.. or maybe you have floating rules that override those rules?
-
@johnpoz I disabled the rules during some days and nothing changed.
The rules:
The first "pass" port 53 (DNS) only to pfSense DNS
The second "block" any external DNS
I copied that from the forum.
I will try to change the Wireless "channel" to "11" instead of "13"
-
That can definitely be a problem. Some devices cannot 'see' 12 and 13 even if they should be set to allow that in your region.
That usually just stops things connecting at all but I guess I could imagine some code doing something odd there.Steve
-
@stephenw10 said in Iphone looses conection to wi-fi pfesense 2.4.4-RELEASE-p3 (amd64):
That can definitely be a problem. Some devices cannot 'see' 12 and 13 even if they should be set to allow that in your region.
That usually just stops things connecting at all but I guess I could imagine some code doing something odd there.Set it even lower than that. Those double wide 40 MHz channels take up so much bandwidth they're way out of band on the upper channels. The channel numbers are normally for the lower of the 2 channels, with the other 5 higher. So, if you pick 11, the upper channel will try to be on 16, which doesn't exist. On the other hand, if you pick 1, then the 2nd channel will be on 6.
Regardless, using 40 MHz channels on 2.4 GHz is a bad idea, if you have neighbours, as it takes up so much of the spectrum.
-
40 on 2.4 is not standard - and no you shouldn't have it enabled to be honest.
It going to cause you nothing be grief.. .Turn it off..
All you have is 2.4? You don't have 5 or AC even? Your iphone is AC - unless its really really freaking old..
