Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Cannot reach host from one subnet

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 3 Posters 598 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      floydque
      last edited by floydque

      Hi Guys!

      So I have a 6 ports pfsense device and here is my setup and problem.

      Setup:

      Port 1: WAN PPPoE - Live IP 1

      Port 2: WAN PPPoE - Live IP 2

      Port 3: LAN Interface - NON NAT Live IP 3 connected to single host with Live IP 4

      Port 4: LAN Interface - NAT DHCP Gateway: Port 1

      Port 5: LAN Interface - NAT DHCP Gateway: Port 2

      Port 6: LAN Interface - NAT DHCP Gateway: Load Balance/Failover (Port 1 and 2)

      My problem is
      If I am on Port 4, 5 and 6, I cannot ping host with Live IP 4 but I can ping Live IP 3.

      From the outside, I can ping the host with Live IP 4 with no problems.

      Thanks

      B 1 Reply Last reply Reply Quote 0
      • B Offline
        BossaOps @floydque
        last edited by

        @floydque Can you ping the IP on Port 3?

        F 1 Reply Last reply Reply Quote 0
        • F Offline
          floydque @BossaOps
          last edited by

          @bossaops Yes. I can ping the Live IP of port 3.

          More details:

          If I do a trace route on the Live IP 4, I can see that instead of stopping on the gateway because it's under Port 3, it goes out of the internet and comes back but drops only after Port 3.

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ Offline
            johnpoz LAYER 8 Global Moderator @floydque
            last edited by

            If your doing policy routing - ie rule that says use gateway X.. Then you need rules above that to allow for traffic to other vlans on your network.

            https://docs.netgate.com/pfsense/en/latest/multiwan/policy-route.html#bypassing-policy-routing

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            F 1 Reply Last reply Reply Quote 1
            • F Offline
              floydque @johnpoz
              last edited by

              @johnpoz Worked like a charm. Wasted 8 hours. I was almost there. Thank you, thank you very much!

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.