Head banging…..Guest Wireless
-
Ok I have combed the forums tired 10 or 15 different things and now I am just ready to put my head through the wall.
I am trying to add a guest wife to my network and it is just going on where I am guessing I am missing something simple as that always seems to be the thing that drives you crazy. So here goes the layout.
Running PFSense 2.3.2-RELEASE (amd64)
There is a WAN interface set up on VMX1 on the host machine
There is a LAN interface set up on VMX 0
There is a WIFI(Opt1) interface set up on VLAN22 on VMX0 - lan(WIFI)THE WAN is DHCP connenting to my ISP
The LAN is set to a static IP address of 10.77.1.1 and has a DHCP range of 10.77.77.1 to 10.77.77.254
WIFI is set up to a static IP adress of 10.22.2.1 and has a DHCP range of 10.22.1.100 to 10.22.1.200The LAN has the following fire wall rules:
https://drive.google.com/open?id=0B3NVKSiyaF7qWlZuVWRJbllRRXMThe WIFI interface has the following rules:
https://drive.google.com/open?id=0B3NVKSiyaF7qX19WNHFDUFV1WXcI Have a CISO SG300-52MP switch. The Trunk port connecting to the LAN interace of PFSENSE is gig port 49.
I have configured VLAN 22 on the switch and have port 2 configured as an Access port on the VLAN as well as Port 49 is on the VLAN as well with a Trunk configuration.I am connecting a SYMBOL WS 2000 controller to the switch:
GUEST
Port 5 on the controller is connected to Port 2 on the switch on VLAN 22
THE VLAN on the Controller for the Subnet is likewise set as VLAN 22
And has an IP address of 10.22.2.254, Subnet: 255.255.0.0, Gateway pointing to the Interface on PFSense (10.22.2.1)LAN
Port 6 on the controller is connected to port 1 on the switch on VLAN 1
The Vlan on the controller for the Subnet is set to VLAN 1
And has an IP address of 10.77.2.1, Subnet: 255.255.0.0, Gateway pointing to the interface on PFSense(10.77.1.1)Access ports for the Controller are pulled into ports 25 and 26 on the switch and are on VLAN 1
And all ports and WLANS are added to their respective subnets on the controller.NOW with that all described here is what I am seeing.
The LAN portion of the wireless connects up just fine gets it's IP address and gets access to the internet.
The WIFI portion of the wireless I can see the SSID and when I connect to it, it prompts for the pass phrase and if entered incorrectly pushes back that the pass phrase is incorrect. Once it is entered correctly it will spin for a while and eventually fails with unable to connect, the wireless adapter getting an IP address of 169 something. So it looks like there is a break down somewhere in the switch causing the the SSID not to get to the WIFI interface on PFSENSE, or Routing is failing to get to the WIFI interface to get an IP address once it reaches PFSENSE.
I can't find what I am missing, any ideas?
-
WIFI is set up to a static IP adress of 10.22.1.2 and has a DHCP range of 10.22.1.100 to 10.22.1.200
[…]
And has an IP address of 10.22.2.254, Subnet: 255.255.0.0, Gateway pointing to the Interface on PFSense (10.22.2.1)typo?
Why do you set networks to /16 when your DHCP range is only .100 - .200?
(If I got it right that pfSense is doing DHCP for your wireless clients as well…)Edit: I don't know the Symbol controller. Is it working in an existing subnet or using the link to pfSense as transit network from its own range?
-
Yes that was a typo, they both should be 10.22.2.1.
Just limiting the IP pool so that I could know what was what when I looked at it. I originally started off with a 24 bit subnet but bumped it up when to 16bit to match the LAN interface to see if I could get a connection to the internet by using the 10.77.1.1 gateway. But still having issues.
Yes it is working for a regular wireless connectivity on the LAN, this is an attempt to set up a a second subnet on the WS2000 for Guest wireless that only gives the person access to the the internet without having access to the main network.
-
I originally started off with a 24 bit subnet but bumped it up when to 16bit to match the LAN interface to see if I could get a connection to the internet by using the 10.77.1.1 gateway.
hmmm??
-
Any further insight, or are you just humming along kind of like elevator muzak?
-
Draw a schematic, wording descriptions don't help here.