    I have a couple of internal LAN's.

    Now MODEM is the last one I added. It looks like this:

    Fritzbox (Manual IP Subnet no DHCP) -> Pfsense

    Pfsense also used this fysical direct connection for the PPPoE.

    There are two connections in the pFsense: the link to the FritzBox modem (it's a router with DHCP off and PPPoE from Pfsense) and the other one to a switch with VLAN's.

    Now I can do a ping to from pfsense, but not from 10.0.0.X (LAN network).
    How is this possible? No strange things in the firewall logs.

  • LAYER 8 Global Moderator

    " Subnet"

    That says 10.anything is here.. So how could another interface be 10.0… That is same network when you use a mask of ie /8

  • Yes I know. I tried it with before, but I thought maybe the FritzBox router filters some requests. So then I changed it to a wider range to be sure. Both and the current one give the same result.

  • In pfsense and all other clients all is /24.

  • Any tips in debugging this?  :(

  • Have you set it up as described here:

    Check the part of Outbound NAT. You need a rule for the MODEM interface for accessing the FB.

  • Cool, there is actually a HOWTO for this!
    The "Configure a new Interface" part I had right but I didn't know about the "Configure NAT" part.
    The information in it is a bit outdated, I selected Hybrid instead and now it's working!

