Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    2 WAN and 2 LAN - How to make one of the lan see computers in lan 2

    Firewalling
    2
    10
    730
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tnovy last edited by

      Hey Pfsense people,

      I am new here and in the pfsense universe.

      I had issues with my home network so I have been reading about how to make my own router using this beautiful OS.  I have bought a mini PC with 4 LAN ports and I have been loving it so far.  I have managed to use two ISP - one as primary and second one as failover.  It works perfectly.

      The one thing I could not figure out is how to make computers connected to LAN1 see computers connected to LAN2.

      I am sure it is a very silly question - but I am learning using this great software.

      Thank you in advance.

      Tom

      1 Reply Last reply Reply Quote 0
      • NogBadTheBad
        NogBadTheBad Galactic Empire last edited by

        Do you have firewall rules on the LAN & OPT1 (LAN2) interfaces ?

        They will route between each other as they are directly connected, so it isn't a routing issue.

        I'd have thought you would have been able to ping fron the LAN subnet to the OPT1 subnet, just not from OPT1 to LAN as the firewall is stateful and the LAN interface should have a LAN net to any by default.

        1 Reply Last reply Reply Quote 0
        • T
          tnovy last edited by

          Thank you for the fast reply - this is my LAN rule:  http://cloud.photom.me/2N251C2D2Q1g
          so it should be working.

          Do both LAN ports have to have different IP range?

          1 Reply Last reply Reply Quote 0
          • NogBadTheBad
            NogBadTheBad Galactic Empire last edited by

            @tnovy:

            Do both LAN ports have to have different IP range?

            Yes otherwise the end devices won't route out the default route for the subnet.

            BTW its easier if you just show your firewall rules from the Firewall -> Rules ->LAN rather than the edit page.

            What rules do you have set up on the OPT1 aka LAN2 interface ?

            If I didn't have that top rule on my VOICE subnet I could ping hosts from the LAN to VOICE, but VOICE to LAN wouldn't work.



            ![Untitled 2.png](/public/imported_attachments/1/Untitled 2.png)
            ![Untitled 2.png_thumb](/public/imported_attachments/1/Untitled 2.png_thumb)

            1 Reply Last reply Reply Quote 0
            • T
              tnovy last edited by

              Lan 1:  http://cloud.photom.me/1h2u3C3a020x
              Lan 2: same rule

              Thanks

              1 Reply Last reply Reply Quote 0
              • NogBadTheBad
                NogBadTheBad Galactic Empire last edited by

                Where's the second LAN interface, there should be another interface showing along the top of your screenshot ?

                i.e FLOATING  WAN LAN WAN2 LAN2 or OPT1

                Have you assigned the interface under Interfaces -> Interface Assignments ?


                1 Reply Last reply Reply Quote 0
                • T
                  tnovy last edited by

                  I have removed it because the issue that I am having - I have connected everything to an external switch - but I am asking if I have done something wrong that it did not work.  Once i get all the info I will activate Lan2 and plug the second switch to it.

                  1 Reply Last reply Reply Quote 0
                  • NogBadTheBad
                    NogBadTheBad Galactic Empire last edited by

                    Try assigning the interface and giving it a differnet subnet to your LAN interface, it should work.

                    1 Reply Last reply Reply Quote 0
                    • T
                      tnovy last edited by

                      I will try - thank you so much for all your help.

                      1 Reply Last reply Reply Quote 0
                      • NogBadTheBad
                        NogBadTheBad Galactic Empire last edited by

                        Your welcome :)

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post

                        Products

                        • Platform Overview
                        • TNSR
                        • pfSense
                        • Appliances

                        Services

                        • Training
                        • Professional Services

                        Support

                        • Subscription Plans
                        • Contact Support
                        • Product Lifecycle
                        • Documentation

                        News

                        • Media Coverage
                        • Press
                        • Events

                        Resources

                        • Blog
                        • FAQ
                        • Find a Partner
                        • Resource Library
                        • Security Information

                        Company

                        • About Us
                        • Careers
                        • Partners
                        • Contact Us
                        • Legal
                        Our Mission

                        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                        Subscribe to our Newsletter

                        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                        © 2021 Rubicon Communications, LLC | Privacy Policy