Setting up PPPoE



  • I have pfsense on one machine which is connected to an Internet connection.  I have another desktop connected to the pfsense machine.  I would like to know how I would be able to log into the pfsense machine using PPPoE.



  • Just create a internetconnection at the client like if you were creating a direct dialin for your pppoe ISP and enter your user logon information you set up at the pppoe server user manager.



  • @hoba:

    Just create a internetconnection at the client like if you were creating a direct dialin for your pppoe ISP and enter your user logon information you set up at the pppoe server user manager.

    you misunderstood me but its ok. i figured it out.  my isp connection is dhcp but what I wanted to do was log onto my pfsense machine using pppoe before being able to access the net



  • No, you misunderstood me. I know what you want.  :P



  • @hoba:

    No, you misunderstood me. I know what you want.  :P

    Okay… anyways, the good news is, I "kind of" got it working, but I'm still haven't many difficulties trying to accomplish what I'm doing.  Perhaps you could further elaborate the details in your suggestions.

    My setup:

    I have one computer running pfsense with two NIC's; one runs into a dhcp cable modem (WAN), and the other NIC (LAN) to the 2nd desktop.

    I have setup a PPPoE on pfsense (with username/passord) and my desktop and I can login fine and surf the web.  Cool.

    My first problem:

    Before I login using PPPoE I can still connect to the web.  ???  How come?

    Right now all I care about is simulating a PPPoE connection so since I can, I'm not too worried about the first problem, although it'd be nice to know why this happens.

    Second problem:

    I have disconnected the desktop and connected the "LAN" NIC to a router (Juniper 5GT, if that makes a difference).  I have set up the router with the corresponding username/password and I can connect machines to the ports and surf the web. Okay.  My goal is to be able to connect to a outside server (which I can) and have the server contact my router (thats behind pfsense) and apply certain settings/configurations. The problem I have is my outside server is unable to connect to my router.  I am using the DHCP WAN IP to connect.

    I have tried configuring pfsense to "allow" outside communications and what not, but so far, I am unsuccesful.  Perhaps I'm doing it incorrectly or this just isn't possible.  Any suggestions/advice would be appreciated.

    Thank you in advance,

    Dave.



  • PPPoE happens on layer2, this means you don't need anything else at this interface allowed and it still will work after authentication. If you only want users to be able to pass through your firewall after they connected to PPPoE delete all rules at the Interface you run PPPoE on and disable the DHCP-Server for this interface.

    To your second problem: I'm not sure if you can forward external connections to an internal PPPoE Client but I guess it's the same like for PPTP clients. I once tried to forward an external connection to a connected PPTP client and it was not working. I'm not sure if this can be done somehow or if it is a limitation of some kind.



  • @hoba:

    To your second problem: I'm not sure if you can forward external connections to an internal PPPoE Client but I guess it's the same like for PPTP clients. I once tried to forward an external connection to a connected PPTP client and it was not working. I'm not sure if this can be done somehow or if it is a limitation of some kind.

    Works the same.  We do this already at the ISP where I work.



  • @sullrich:

    @hoba:

    To your second problem: I'm not sure if you can forward external connections to an internal PPPoE Client but I guess it's the same like for PPTP clients. I once tried to forward an external connection to a connected PPTP client and it was not working. I'm not sure if this can be done somehow or if it is a limitation of some kind.

    Works the same.  We do this already at the ISP where I work.

    so… how?



  • @hoba:

    PPPoE happens on layer2, this means you don't need anything else at this interface allowed and it still will work after authentication. If you only want users to be able to pass through your firewall after they connected to PPPoE delete all rules at the Interface you run PPPoE on and disable the DHCP-Server for this interface.

    how?



  • @scan:

    @hoba:

    PPPoE happens on layer2, this means you don't need anything else at this interface allowed and it still will work after authentication. If you only want users to be able to pass through your firewall after they connected to PPPoE delete all rules at the Interface you run PPPoE on and disable the DHCP-Server for this interface.

    how?

    Let's say you run the PPPoE-Server at OPT1, delete all rules for OPT1 and don't set up a  DHCP-Server for this interface. Add pass-rules for your PPPoE Interface. Done.


Log in to reply