Please help to get everything to work to OPT1, DHCP works static does not.
-
Good Day All
Please need help with getting traffic to work from WAN\LAN – OPT1 and please forgive me as I am a complete newbieI have pfsense setup with 3 adapters, WAN, LAN and OPT1;
WAN is connected to a DSL router and is working fine
LAN is running fine and using DHCP
OPT1 is used for a hikvision camera setup.
Both OPT1 and LAN has internet access fine.The thing I’m struggling with is to get everything to work going to OPT1.
If I setup DHCP to run on OPT1 then I can get to all machines on the OPT1 network. I can for example, using pfsense ping a PC and ping the hikvison camera NVR.
However if I set OPT1 to be static I can no longer ping the NVR but I can ping the computer.
I have tried using multiple network subnets on OPT1 and also checked a number of times that the static has right IP and gateway on the NVR
EG
OPT1 on DHCP - PC on DHCP - NVR on DHCP
Result - Can ping the PC and can ping the NVROPT1 on Static - PC on Static - NVR on Static
Result - Can ping the PC, but cannot ping the NVRWAN adapter 10.0.0.2 (DSL router 10.0.0.1)
LAN 192.168.1.1 /24
OPT 192.168.2.1 /24
On the firewall i have completely opened for TCP UDP and ICMP for all three adapter.Please help me understand what im doing wrong
-
Newbie or not, we won't be able to understand neither :
@kdes:However if I set OPT1 to be static I can no longer ping the NVR but I can ping the computer.
Do just say "static", say
NVR :
IP 192.168.2.2
Mask 255.255.255.0
DNS 192.168.2.1
Gateway 192.168.2.1 for devices running on OPT1.Btw : I have a LAN like you :
pfSense LAN:
IP 192.168.1.1
Mask 255.255.255.0
pfSense is running a DHCP server on LANSame thing for my OPT1:
192.168.2.1 /24
DHCP server running on OPT.
Gateway 192.168.2.1 for devices on OPT1.I can ping devices from my PC on LAN (my PC 192.168.1.2 to a device on OPT1 (an AP) : 192.168.2.4 (is static btw):
C:\Documents and Settings\Gertjan.BUREAU>ping 192.168.2.4 Envoi d'une requête 'ping' sur 192.168.2.4 avec 32 octets de données : Réponse de 192.168.2.4 : octets=32 temps=3 ms TTL=63 Réponse de 192.168.2.4 : octets=32 temps<1ms TTL=63 Réponse de 192.168.2.4 : octets=32 temps<1ms TTL=63 Réponse de 192.168.2.4 : octets=32 temps<1ms TTL=63 Statistiques Ping pour 192.168.2.4: Paquets : envoyés = 4, reçus = 4, perdus = 0 (perte 0%), Durée approximative des boucles en millisecondes : Minimum = 0ms, Maximum = 3ms, Moyenne = 0ms C:\Documents and Settings\Gertjan.BUREAU> I have a PC on my LAN, it obtained a IP from pfSense : 192.168.1.2 andOf course, firewall rules on LAN and OPT are important (one rule on each interface will do if well chosen).
-
Newbie or not, we won't be able to understand neither :
Sorry if i did not make sense, ill try re-word or show in another way.
WAN network 10.0.0.0
LAN network 192.168.1.0/24
OPT1 network 192.168.2.0/24OPT1 DHCP Server ON (192.168.2.0/24)
NVR gets IP from DHCP (192.168.2.254)
Test Computer is on static IP (192.168.2.106)
Using PFsense for pinging
OPT source ping 192.168.2.106 -> get reply
OPT source ping 192.168.2.254 -> get reply
LAN source ping 192.168.2.106 -> get reply
LAN source ping 192.168.2.254 -> get replyOPT1 DHCP server is OFF (192.168.2.0/24)
NVR is on static IP (192.168.2.254)
Test Computer is on static IP (192.168.2.106)
Using PFsense for pinging
OPT source ping 192.168.2.106 -> get reply
OPT source ping 192.168.2.254 -> get reply
LAN source ping 192.168.2.106 -> get reply
LAN source ping 192.168.2.254 -> do not get reply
However i can ping the NVR from the Test computer.Why can i not get to the NVR from LAN. When OPT1 is not using DHCP server and the NVR is set to static?
-
When you set "NVR" to static (192.168.2.254), what do you set as Mask, DNS and Gateway ?
-
Pfsense OPT1 adapter is set to 192.168.2.1
The NVR
Address = 192.168.2.254
Mask = 255.255.255.0
Gateway = 192.168.2.1
DNS1 = 192.168.2.1
-
It happened to be that the NVR has an internal network card and a LAN card. (Two network cards, one for its own use for the IP cams and another for LAN connecting)
The internal network card range was the same LAN range as the LAN range on pfsense causing all sorts of problems.If you are using hikvision check the internal network range is not the same as any other range on your pfsense box.
