Moving from DD WRT router to Pfsense as router and wrt as AP

Nomed

Greatings

Appologizing ahead for a noobie issue.

Setup:
Freshly build box with i5-3470, 4gb ram, 120gb ssd and 4 port intel pro nic.
Archer C8 router with almost last dd wrt firmware.
switches in 2 locations for different pcs and server

Wan is fiber modem - em0 - working
Lan set - 192.168.2.1 - em1- working
Router - 192.168.3.1 - em2 - semi working

All wirless getting 192.168.3.XXX ip but no internet access

I have setted wrt in this tutorial: https://wiki.dd-wrt.com/wiki/index.php/Wireless_access_point

Really i wanted to have all lan+wifi to exist in same lan.

Wrong setting?

KOM

@Nomed said in Moving from DD WRT router to Pfsense as router and wrt as AP:

Wrong setting?

Who knows? You've provided almost no detail whatsoever about your LAN configuration. Did you put your wireless rig into AP mode?

https://doc.pfsense.org/index.php/Connectivity_Troubleshooting

johnpoz

If you want lan and wifi in the same network - why are you putting your AP on a different network?

to use ANY wifi router, even one running 3rd party... You turn off its dhcpd, you connect it to the network you want the wifi to be on via one the devices LAN port = done.

As to why your em2 devices not getting internet - what rules did you put on that interface.. Unlike lan there will be no rules out of the box

provels

I run 2 DD-WRT Buffalo routers as AP behind pfSense. You can disable the WAN port on the router and add it as a LAN port so all AP ports are on the same net. Make sure the DD-WRT DHCP is disabled and just use the pf.

Nomed

DHCP is disabled in wrt router. i set it as wiki sudgested

Firewall rulles are copied from lan to opt1 interface as from this tutorial : https://www.youtube.com/watch?v=V4cJErBK-0Q

KOM

Don't tell us what you think you have done, show us. Post screens of your LAN config & rules.

Nomed

in few min

Gertjan

@Nomed said in Moving from DD WRT router to Pfsense as router and wrt as AP:

Really i wanted to have all lan+wifi to exist in same lan.

That's what I'm doing for the last decade, or so : using a bunch of WRT54GS / E1200 / etc with the dd-wrt firmware.

The initially 'router' device using the dd-firmware should be set up as an "AP" - I'll copy some screen hots.
Info my second LAN (called PORTAL) hosts me 4 AP's :
pfSense : 192.168.2.1 / 24 - DHCP server and DNS Resolver active on this LAN.
AP-1 : IP static 192.168.2.2 - gateway 192.168.2.1 - DNS 192.168.2.1 - DNS and DHCP server shut down.
AP-2 : IP static 192.168.2.3 - gateway 192.168.2.1 - DNS 192.168.2.1 - DNS and DHCP server shut down.
AP-3: IP static 192.168.2.4 - gateway 192.168.2.1 - DNS 192.168.2.1 - DNS and DHCP server shut down.
etc ...

You can leave other pages to their default values, or do what you want step by step and step back when you break things (== stops working).

The AP mode is just a "transform radio signals to elctrical wired "signals" device. No firewall rules, neither NAT, nothing needs to be activated on the AP.
How to transform a device using a dd-wrt based firmware ? : see the dd-wrt forum/sites/FAQ/Manuals

Nomed

Annotation 2019-07-05 174038.jpg Annotation 2019-07-05 174126.jpg Annotation 2019-07-05 174200.jpg Annotation 2019-07-05 174232.jpg Annotation 2019-07-05 174355.jpg Annotation 2019-07-05 174424.jpg Annotation 2019-07-05 174501.jpg

Gertjan

Forum Rule Number One : Read back what you posted ^^

KOM

No idea what you are doing but you can upload images directly to this forum using the Picture function in the toolbar. All we need is your LAN config and LAN firewall rules. That should be two images.

Gertjan

@KOM said in Moving from DD WRT router to Pfsense as router and wrt as AP:

and LAN firewall rules

Typically, to start with :

Afterwards, you can be more strict.

Nomed

@KOM
Appologize.

I think i can spot the issue.

KOM

If you want your wifi on the same network as LAN, you need to:

disable DHCP on the wifi router
disable the WAN port on the wifi router
connect wifi router LAN port (any one will do) to LAN switch

Wifi router will act as a transparent bridge to LAN. Wifi clients will get IPs from pfSense DHCP.

Nomed

I left the gateway and local dns empty at wrt. after correction, internet is working.

That was the only missing spot.

I feel so empty....

JKnott

@Nomed said in Moving from DD WRT router to Pfsense as router and wrt as AP:

Really i wanted to have all lan+wifi to exist in same lan.

Connect the router as an access point, that is connect the LAN side of it to your LAN. You can also turn off the DHCP server, though that's not necessary, if it's configured for your LAN addresses.

provels

@Nomed Try to plug a LAN port on your router into one of your switches and see if you get Internet. You could drop the OPT1 entirely.

Nomed

@provels

I will do this now

Nomed

Working

Thank you soo much.