4. One static public IP - routing one pfsense box through another

One static public IP - routing one pfsense box through another

  • T

    Internet <-> pfs1 <-> pfs2

    I’m doing a test of a second pfsense router and I only have one public static IP. So I’m trying to use the pfs1 LAN IP of 192.168.5.171 as the WAN IP for pfs2. Is this even possible?

    pfs2 does have internet but none of the client machines on the 192.168.8.0 network have internet. They cannot ping domains or internet IP addresses.

    pfs2 is setup pretty much the same way as pfs1 and I have tried several firewall rules on both boxes but without success.

    pfs1 (two interfaces):
    WAN: x.x.x.x
    LAN: 192.168.5.1

    pfs2 (two interfaces):
    WAN:        192.168.5.171
    GATEWAY: 192.168.5.1
    LAN:        192.168.8.1

    0
  • V

    This should work by default, though. Both pfSense would do NAT, so you've double NAT, but this should not be a problem.
    Is the outbound NAT set to automatic mode on pfs2? pfSense has to do NAT on outbound packets on WAN.

    Have you double checked the network settings on the LAN2 machines?

    Have you really tested internet access by IP addresses to exclude a DNS issue?

    Try a traceroute to an internet address to see where it get stuck.

    0
  • T

    Figured it out. Really stupid mistake. Typo's in configuration.

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy