LAN - WAN : Errors
Hello, I am trying to set up Pfsense.
My server in the LAN zone can not access to Internet.
I try multiple ping with the different equipments. (router, laptop, server)
I have two erros :
- Request timed out
- TTL expired in transit
Here is a diagram of the infrastructure
An array of ping tests
What can I test more?
Thanks for advance :)
Are you routing or nating between the WAN and LAN on the pfSense?
Thanks for your reponse @conor
I'm doing routing.
I have two different networks 192.168.1.0 (WAN) and 192.168.2.0 (LAN). I did not set up a static route.
There is no rule in the firewal. Everything is allowed.
In the section Diagnostics / Routes why I see link# ?
It's the problem ?
In Pfsense, i have this conf :
Starting with the laptop...
If you are doing routing that means that SRV-1 ping will reach Laptop-1 with a source IP of 192.168.2.240, this is outside of Laptop-1 subnet so it will send the responce to 192.168.1.1. So if the router 192.168.1.1 doesn't have a route for the 192.168.2.0 network it will send the reply ping out of the network onto the web.
Assuming that the laptop firewall is off or allowing ICMP pings.
On RT-1, the config is :
RT-1 have a route for 192.168.2.0/24.
in regards to the "links" question:
Thanks, I will read the documentation
are you checking 18.104.22.168 as the DNS?
Can you post a screen shot of: "System > General Setup" please
@conor Thanks, I will check it
Also for gateways normally you would only have the WAN interface with an entry, i'd remove the LAN gateway, make sure on the LAN interface there is no gateway set
In System > General Setup , I have :
Ok remove the LAN side gateway then reboot and send on a screenshot of Diagnostics / Routes please
I have removed the LAN Gateway and ... Tadaaam !
PING SRV-1 to RT-1
ping 192.168.1.1 Pinging 192.168.1.1 with 32 bytes of data: Reply from 192.168.1.1: bytes=32 time<1ms TTL=63 Reply from 192.168.1.1: bytes=32 time<1ms TTL=63 Reply from 192.168.1.1: bytes=32 time<1ms TTL=63 Reply from 192.168.1.1: bytes=32 time<1ms TTL=63 Ping statistics for 192.168.1.1: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms
and SRV-1 to DNS :
ping 22.214.171.124 Pinging 126.96.36.199 with 32 bytes of data: Reply from 188.8.131.52: bytes=32 time=14ms TTL=54 Reply from 184.108.40.206: bytes=32 time=14ms TTL=54 Reply from 220.127.116.11: bytes=32 time=14ms TTL=54 Reply from 18.104.22.168: bytes=32 time=13ms TTL=54 Ping statistics for 22.214.171.124: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 13ms, Maximum = 14ms, Average = 13ms
Thank you very much for your help