WAN not getting IP
-
@DaddyGo Just a stupid question, having the clock wrongly set can impact the way it get's acces to the ISP server, or it just mess up with just the logs and anything else. I know that having a minute behind for example, google authinticator doesn't work anymore, just asking for that reason.
-
of course, NTP is very important, just think of certificates with SSL
but that's another question, hmmm
BTW, specify your time exactly, because the timings are based on that as well
especially since pfSense is a very good NTP server on your network and you don't need to use external pools -
we use old, but little used Dell R210IIs for pfSense with NICs I350-F4 / I350-T4 (because the on -board BCM chipset is not very suitable for IPS) / it’s a fantastic configuration, it survives everything
-
@DaddyGo Okay, im gonna set the time right, also I need to take a break for this, my roommate started playing a videogame and I can't mess with the network right now till 23 so ill be back on doing testing at that hour, thanks so much honestly you made more progress for me than the 4 days im stuck with this. I'll reply with more thinks later as I can mess with the network again.
-
thank you for your kind comment, let’s spend time with what we love
if I can even help, I'll be here tomorrow and now I'll check out the How the Universe Works (next episode) -
@DaddyGo Back at work hahaha, I changed the time, this is the DHCP log is showing up, ill link the pictures throught drive because it's faster than taking a screenshot and uploading since only my laptop has an internet connection (https://drive.google.com/open?id=1-1ooMoEYBpKMLVECANBQ9Hvi2wyp3y8d) that's what DHCP is showing.
-
Two things :-)
so that we can get into the "picture" more seriously, so your system looks like this: ISP modem or router (in bridge mode) + pfSense box ???the another:
- the following should be observed in the dhcp log.... from WAN
but in front of it press a button on the status / interface tab, WAN section "release WAN" / with this button we start a process which, if we are lucky, generates a log entry in dhcp
- the following should be observed in the dhcp log.... from WAN
-
@DaddyGo my actual system is like this ONT->pfSense box, the ONT is a Nokia G-010G-PPL, in it's config it doesn't have any toggle for bridge mode so it's bare as it is on it's own, ill get that button pressed in a moment and ill share the result.
-
@DaddyGo Sorry to bother you but I can't find that "release wan" button this is what I have (https://drive.google.com/open?id=1-MPYaGvSxfTnW02o-kkVxdYjGNeEGXE2) also everytime I try to connect "WAN_FI" it automatically disconnects, so that's the "problem"
-
This is similar to what we use in Portugal: Altice Network = (Nokia)
I know this ONT well, but it's always paired with an ISP router like Technicolor brand.
It doesn’t work on its own (ONT), in general.
So that's eth. port (on ONT) does not directly access the GPON network.
This way you can't switch directly to pfSense box. (by replacing your original ISP's router)Requires: original ISP ONT (Nokia Altice) + original ISP router configured in bridge mode + pfSense box
Are you trying to connect the pfSense box directly to your ISP ONT?
Do I think the situation is right?
Or am I on the wrong way? -
@DaddyGo Yes, you nailed, im trying to connect the pfSense box directly to the ONT, the router provided doesn't have either a bridge mode or something similar to it, so it's kind imposible to configure it that way. Would this be posible if I buy an SFP+ GPON ONT trasciever and put the data of the nokia ont into the transciever?
-
We solved the problem :-)
You cannot get a dynamic IP for pfSense directly from the ONT!The providers (ISPs) usually give the option to bridge mode, pls. call your ISP.....
and if possible in the ISP’s policy (business) then they centrally set your bridge mode, with that set the original ISP router to one of eth. port to bridge portDon't experiment with your own GPON SFP and similar solutions, it WILL NOT WORK! (money toss)
The Altice Network has the same structure everywhere and I know it well -
@DaddyGo I already called them in the first place and told me that I can't used another router besides their, sad to know this, maybe I should change my ISP, the sad part is that here in spain tbh is the cheapest 600/600 that youll find, now I know why is so cheap. Well at least now I know that It won't wonrk no matter what I try, maybe I'll try to swithc for the original ISP that this OMV is working on that is Vodafone, thanks so much for your time, honestly. Also maybe I delete the pictures on this post as I noticed that I didn't blur any mac adress hahaha, in the near no so far future, could I just message you again for help? You helped me so much and know so well how this thing works.
-
That's why I'm switched providers here in Portugal :-)!!!
Vodafone does not give bridge mode (be carefull), only to serve MEO and NOS.
Altice Network FTTH + bridge mode + own public IP = no Vodafone, hahahha
Thanks for talking to you about this.
if you found my help useful please give me one -
Yes, always be careful when entering data to online,
you know privacy.
This is a rushing world! -
@DaddyGo Yes hahaha, maybe ill get in contact with O2 because it's like an OMV for Movistar, also in my building the entire FTTH installation is propietary from Movistar, they install like a combo router with an integrated ONT, so it's way easier to get the data from them, I need to think for it before, also I need to purchase the sfp+ pcie card so I can get rid of everything...
Maybe in a couple of months ill reply back with a working pfSense connection, who knows hahaha, today im sad honestly, such stupid lockdowns makes no sense tbh. -
The problem is that on the Altice Network (in Spain and Portugal is same), ONT and Router are paired.
Custom router at FW and MAC level, so you will always need an ISP router, only one provider will allow bridge mode, some will not.
So SFP is not a solution, consider this. -
@DaddyGo Then im fully screwed, because I think any ISP here in Spain doesn't allow such things... (my brain works faster than my fingers 2nd edit)
-
Here in Portugal, only companies are given purely GPON ONT terminals, individuals can only use ONT / router combos.
A clean ONT installation allows you not to use PPPOE because it is not a solution, it is a tunnel protocol with many advantages and for us its drawbacks, like MTU, like IPS with netmap
-
@DaddyGo Need to say that the OLT my ISP is working on is orange and the OLT is a ZTE C300, as I know you can't pair ONT and OLT from diferrent vendors, maybe at the end it will work with some major/minor tweaks.