Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Guest VLAN - no internet access

    Firewalling
    2
    3
    1423
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tgreen
      last edited by

      Hi there,

      I have an issue with a VLAN I want to create for a guest network.  I'm still pretty green in the VLAN world

      I have a Unifi AP setup with a network assigned to VLAN 5. 
      When I connect my phone to the 'guest' wifi, I get the appropriate VLAN address and it shows up in the pfSense Leases.
      Leases in use show LAN and Guest

      I can ping the Guest IP from the LAN (don't have any restrictions on LAN right now).
      I cannot ping a LAN IP from the guest (from my phone)

      The firewall rules for the Guest VLAN is wide open as well
      IPv4 TCP * * * * * none

      Really unsure of what I'm missing here

      I should also mention that I have an unmanaged switch and LAN/VLAN are out on the same pfSense port (trunked)
      The Guest VLAN is addressed 10.2.5.1, no upstream gateway
      Unifi AP assigns the VLAN 5, but DHCP is handled in pfSense

      Little baffled here

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Change your protocol from TCP to * or you will lose DNS, which is likely your problem.

        1 Reply Last reply Reply Quote 0
        • T
          tgreen
          last edited by

          All sorted now.  I allowed TCP/UDP, didn't want to allow all as it is a guest network and should be limited in use

          Pretty nice software overall once you get used to navigation and knowing where things are

          Thanks!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post