(SOLVED) Unable to ping from outside to WAN port
-
Hello guys,
I have not figure it out, why I am unable to ping from outside to pfsense wan port.
This is my current setup:
Huawei 3/4g wifi router (LAN IP: 196.23.85.173, DHCP: OFF):
- PC A (IP: 196.23.85.175)
- pfsense 2.3.3 router (WAN IP: 196.23.85.174, LAN IP: 192.168.1.1, LAN port DHCP: 192.168.1.10 to 192.168.1.254):
– PC B (IP: 192.168.1.10)
From PC A can ping to internet, Huawei router, but unable to ping to pfsense router.
From PC B can ping to internet, Huawei router, PC A, and pfsense WAN port.After tried to connect PC A to pfsense router with OpenVPN, and there was no response I tried to ping to it, and notice that I was unable to do it. And yes I had a rule to OpenVPN (http://prntscr.com/ehsogn).
And right now I dont know how to solve this =/
-
So your pcA is on the wan side of pfsense.. And on a rfc1918 address.. Even if you allow ping on the wan firewall rules? Did you?? You would have to allow rfc1918 which would be blocked by default.
As to why pc b can ping all of it - is its on the lan side, lan default rules are any any.. So your coming into the backdoor to ping the wan IP..
-
So your pcA is on the wan side of pfsense.. And on a rfc1918 address.. Even if you allow ping on the wan firewall rules? Did you?? You would have to allow rfc1918 which would be blocked by default.
As to why pc b can ping all of it - is its on the lan side, lan default rules are any any.. So your coming into the backdoor to ping the wan IP..
Thank you a lot John, it is true, by default I have (I totally forgot about it): http://prntscr.com/eht02i
Next I have added a ICMP rule for it and it is working =): http://prntscr.com/eht82f
