4. Problems accessing the Internet after replacing my pFSense firewall

Problems accessing the Internet after replacing my pFSense firewall

  • T

    Hi!

    I've been running pfSense 1.0.1 as a virtualized machine for years and it has been working perfectly since.
    Recently I decided to build a dedicated box (VIA-based system) for the firewall and install it with the current 1.2 release of pfSense.
    With this setup I've run into problems and is unable to reach the Internet :(

    The WAN interface is allocated with a IP from the DHCP service on the router and given 10.0.0.4 (my "old" system used 10.0.0.3).
    The LAN interface is configured with 192.168.1.1 and DHCP is enabled with a 192.168.1.50 -> .150 scope. The client computer I have used for testing is automatically allocated with a IP within this scope. Gateway address is set to 192.168.1.1 with correct mask. The DNS server address is also set to the gateway address.
    From the browser I'm able to work the PFSense WEB-GUI and telnet the administrative interface on the router (10.0.0.1).

    However I'm not able to use the web-browser to reach web sites. I'm able to resolve the web site names but tracert fails and times out after the firewall IP.
    I've have tried reinstalling a few times without problem. I'm currently running 1.2.1 RC1 but this has not solved the problem. I therefore think the problem is at another level.

    Any ideas ?

    Regards

    0
  • T

    Well I did solve this issue after some time myself. The WAN-adapter was set to receive an IP-address with DHCP from the broadband router (SpeedTouch 516). It all looked 'good' and the WAN interface was issued with an IP. BUT then I selected STATUS - INTERFACES and saw that GATEWAY was set to 'LINK#4' which it made me wonder. Why didn't it just say 10.0.0.1 which is the correct gateway address on the router? After switching from DHCP to STATIC on the WAN interface and configured ip/gw with legal addresses on the router it all worked like a charm from the first moment.

    Is there is an issue with the DHCP-server on the SpeedTouch? I don't know. Anyway I believe it is good practice to set this as static by default. I did try 1.2.1RC2,RC3,RC4 and finally the release (which I run now) all with the same problem. However this did not seem to have been a problem on my 1.0.1 installation connected to the same router. Here the WAN-interface was set to DHCP.

    Regards

    0

  • If you change hardware i would power-cycle everything connected to it.

    You never know if not somewhere an old MAC is cached and doesnt get updated to the new NIC.

    0
  • H

    hi

    i have the same issue with different 8 brand routers, it only worked with static ip on wan side of pfsense box, but i finally i configured my routers as bridges only, so my wan takes its IP from ISP, all pfsense boxes working like charm, and i am accessing all of them from wan and controlling all of them from home and from my work

    hadi57

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy