OPT4 to WAN



  • Hello!
    Help me, please!
    I have two networks with addresses 10.0.0.0/24 (LAN int - re0) and 192.168.253.0/27. On the cisco catalyst express 500 switch, I created vlan id4 and made an access port fa0/4 with vid 4. I have a computer on port fa0/4.

    On pfsense, I created vlan 4 and added it to the interface re0. This interface called OPT1 with the address 192.168.253.1/27. Enabled DHCP on this interface. Computer connected to fa0/4 received dhcp address 192.168.253.2.

    Now I need to do so that computers from the 192.168.253.0/27 network can access the Internet.
    The computer does not ping the address 192.168.253.1, I create a rule in the firewall (screenshot opt4 to opt4) after this ping goes.
    There is no Internet. I try the rule opt4 to wan (screenshot opt4 to wan), but there is no Internet anyway. How to create a rule to get only the Internet on the network interface opt4?

    Scheme, screenshots of the rules and a screen log are attached.
    p.s. Sorry for my english!)
    0_1538574845911_how to do.jpeg
    0_1538574853653_rules opt4 to opt4.jpg
    0_1538574861058_rules opt4 to wan.jpg
    0_1538574868283_log firewall.jpg



  • You have to correct the destination in the rule to "any" to reach hosts on the internet.

    "OPT4 net" is only the network configured on OPT4 (192.168.253.1/27), so can access the firewall, but that makes no sense at all. To allow only access to the firewall, set it to "This firewall". Other IPs out of 192.168.253.1/27 won't touch the firewall.

    "WAN net" is the network configured on the WAN interface.



  • Now i understand.
    Thank you!