Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem to navigate

    Scheduled Pinned Locked Moved
    Routing and Multi WAN
    2
    9
    529
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gtramontana
      last edited by gtramontana

      good evening,
      I have configured a Pfsense 2.4.5 firewall in my network but the connected PCs do not connect to the internet
      These are the firewall rules
      FirewallRulesLAN

      What could be the problem?

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        Can pfSene connect to the internet?

        Is the pfSense LAN IP the default gateway on the PC?

        Can you ping it?

        Is the outbound NAT working in automatic mode?

        G 1 Reply Last reply Reply Quote 0
        • G
          gtramontana @viragomann
          last edited by

          @viragomann said in Problem to navigate:

          Can pfSene connect to the internet?

          Is the pfSense LAN IP the default gateway on the PC?

          Can you ping it?

          Is the outbound NAT working in automatic mode?

          1. Server Pfsense is connected to the internet

          2. On the PC the default gateway is the pfsense LAN IP (192.168.1.1)
            and the DHCP service also works

          3. from the PC I can ping the pfsense server

          4. the Outbound NAT Mode is = Automatic outbound NAT rule generation.(IPsec passthrough included)

          thanks

          1 Reply Last reply Reply Quote 0
          • V
            viragomann
            last edited by

            Are you able to ping 8.8.8.8?

            G 1 Reply Last reply Reply Quote 0
            • G
              gtramontana @viragomann
              last edited by gtramontana

              @viragomann said in Problem to navigate:

              Are you able to ping 8.8.8.8?

              no of the PC
              yes of the Server

              V 1 Reply Last reply Reply Quote 0
              • V
                viragomann @gtramontana
                last edited by

                @gtramontana
                Strange.

                I'd investigate the problem with Packet Capture from the Diag menu.

                Take a capture on LAN, filter for ICMP protocol and 8.8.8.8 while trying again to ping from the PC.
                You should see ICMP request packets from the PC's IP to 8.8.8.8.

                Then take a capture on WAN. Here you should see the packets coming from the WAN address and responses from the server.

                G 1 Reply Last reply Reply Quote 0
                • G
                  gtramontana @viragomann
                  last edited by

                  @viragomann said in Problem to navigate:

                  @gtramontana
                  Strange.

                  I'd investigate the problem with Packet Capture from the Diag menu.

                  Take a capture on LAN, filter for ICMP protocol and 8.8.8.8 while trying again to ping from the PC.
                  You should see ICMP request packets from the PC's IP to 8.8.8.8.

                  Then take a capture on WAN. Here you should see the packets coming from the WAN address and responses from the server.

                  With Packet Capture I see the PC requests and responses.

                  I think the problem is "Automatic outbound NAT rule generation.
                  (IPsec passthrough included) ", in fact it does not create Automatic Rules

                  V 1 Reply Last reply Reply Quote 0
                  • V
                    viragomann @gtramontana
                    last edited by

                    @gtramontana said in Problem to navigate:

                    I think the problem is "Automatic outbound NAT rule generation.
                    (IPsec passthrough included) ", in fact it does not create Automatic Rules

                    The packet capture will show if it works or not.

                    G 1 Reply Last reply Reply Quote 0
                    • G
                      gtramontana @viragomann
                      last edited by

                      @viragomann

                      I solved it by compiling in the WAN interface "IPv4 Upstream gateway" and saving again "Automatic outbound NAT rule generation.
                      (IPsec passthrough included) "
                      Automatic rules have been created

                      Thanks

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.