Access opt1 from another pfsense



  • pfSense1 is configured with open access for lan 192.168.1.1 and opt1 192.168.100.1
    pfSense2 is on the same lan subnet 192.168.1.2.

    How do I setup pfSense2 access to opt1 using 192.168.1.1 as gateway?



  • Can you explain in more detail what it is you're trying to do?  If you just want pf2 to use pf1 as its gateway then set that in your WAN config.  As long as LAN can access OPT1, clients behind pf2 should be able to as well.



  • pf1 wan is connected to isp1
    pf2 wan is connected to isp2
    pf1 lan and pf2 lan are on the same switch 192.168.1.0/24
    opt1 192.168.100.0/24 is only connected to pf1
    opt1 is accessible from pf1 lan 192.168.1.1

    I want to also access opt1 from pf2 lan 192.168.1.2.



  • I think you have to add 192.168.1.1 as a gateway under System - Routing - Gateways.  Then, using System - Routing - Static Routes, you can add a route for the OPT1 network using 192.168.1.1 as the gateway.



  • It does not seem to work if I add the 192.168.1.1 gateway using the lan interface. If I traceroute from the client, it just goes out the wan. Traceroute from pf2 shows first hop to 192.168.1.1 and then nothing.



  • From console, what is the output of netstat -nr?



  • OK I just simulated it in my lab.  It works like a charm.  I spun up two nodes: pf1 on 192.168.1.1/24 and pf2 on 192.168.1.2/24.  pf1 also had OPT1 at 192.168.10.1/24.  Spun up two Lubuntu clients on pf1 OPT1 and pf2 LAN.  Lubuntu2 @ 192.168.1.10 could not ping Lubuntu1 @ 192.168.10.10.  After adding 192.168.1.1 as a gateway for pf2, I added the static route and then I could ping (see image).




  • I put a packet capture on pf1 lan and see traffic coming from pf2 but then nothing. There must be something wrong with the way I have the network wired up.

    Thank you for your help with my routing problem.


Log in to reply