4. Can connect post firewall using DCHP But can't connect pre-firewall to ISP Router using static IP

Can connect post firewall using DCHP But can't connect pre-firewall to ISP Router using static IP


  • Trying to set up two pfSense firewalls for future deployment and would like to connect them to the Internet to test OpenVPN prior to driving out to the physical locations.

    Both pfSense devices work fine when the WAN is set for DHCP and connected to a switch post the production IPCOP firewall using an LAN IP of 172.16.152.1. But when I connect to a switch that is before the production IPCOP Firewall (10.0.0.15) and connect directly to the ISP Router (207.166.250.2) I can't ping out to the Internet - even with WAN set to an available Static IP that the ISP gave us of 207.166.250.3. I can ping 207.166.250.3 from another PC on the outside.

    Things I've tried in the WAN config of the pfSense is setting up a Gateway using 207.166.250.2 and also 207.166.250.3. I've created Firewall Rule to open all on the WAN. The inside LAN is fine but I can not ping to 8.8.8.8 even from the pfSense GUI under Diagnostics.

    Thoughts? Thanks in advance!

    0
  • Netgate Administrator

    It seems like the subnet between your ISP router and IPCop is 10.0.0.0/24. If you put the pfSense WAN into that subnet it's gateway must be ISP routers internal IP address. So I would expect to see the pfSense WAN set to something like 10.0.0.100/24 with a gateway of 10.0.0.1.

    Steve

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy