Pfsense 2.5 ATT bypass dumb switch
-
Yeah I was curious if anyone might could chime in with suggestions. I have tried the dumb switch bypass and Pfsense firewall will not pull DHCP ip from att. I know it is possible because I spoofed the mac on my Imac and it eventually pulled in an ip. I've tried adjusting the Protocol timing. I adjusted the timeout to 360. I might be wrong but think it took the Imac a good couple of minutes to pull an IP, so maybe that is why the Pfsense firewall isn't pulling an IP?
-
What do you mean by :
@rve52001 said in Pfsense 2.5 ATT bypass dumb switch:
tried the dumb switch bypass
@rve52001 said in Pfsense 2.5 ATT bypass dumb switch:
the Imac a good couple of minutes to pull an IP
You could also say : it took a while for the ISP to accept the MAC of your iMac, and hand over an IP.
Now, with pfSense, you see the same thing.
Pretty sure that you will see the same thing with some other device.pfSense can't force the ISP ....
What about contacting them ? They make you wait. They could be faster ?
How would the ISP know that you're using another device if the MAC's used are all the same ? -
More detail needed. What are you bypassing? The AT&T router? By just replacing it with a switch?
AT&T often requires elaborate workarounds to remove their device.
Are you sure the iMac pulled a valid DHCP lease?
Steve
-
Ok, I am taking a netgear unmanaged switch. Then I am hooking up the cat5e cable from the ONT and putting in one port. Then I plug in the ATT's RG, BGW210, into another port and powering it up. Then after it gets connected and everything is initiated, I am disconnecting it from the switch. I copy the MAC address of the BGW210 and paste it onto the WAN config of the Pfsense firewall, before shutting down to get ready. Then hook up the Pfsense firewall to the switch and power it up. I've tried waiting a while for Pfsense to get an IP, but it will not get one. If I do the same to my Imac it will pull a valid IP from their DHCP server. So yes I am essentially trying to bypass the ATT router.
-
I figured others might have had success in the forum spoofing the MAC address and might have some insight on something I might can do different.
-
Yup. Not as easy as that. See: https://github.com/MonkWho/pfatt
-
That's why I said dumb switch method, because some have had success the way I am trying without having to do pfatt. Now granted, if the power goes out I would have to plug up the RG back up to reinitiate a connection with the ONT.
-
Ah, OK. Well if the Mac really is pulling a valid lease it should be possible for pfSense to do the same. Check the dhclient logs. Run a pcap on both and compare.
Steve
-
Does your AT&T router not have a passthrough option so the pfSense gets a public IP?
-
@teamits
It does, just trying to getting away from the double NAT. -
Please forgive me, but do not know linux that well. I am in ssh and it keeps telling me access denied when I try to type /bin.
[2.5.0-DEVELOPMENT][root@pfSense.localdomain]/root: /bin
/bin: Permission denied.Is there a reason why I do not have permission? I'm thinking of trying the pfatt.sh route for running ATT bypass.
-
/bin is a directory, try "cd /bin"