OPT1 to LAN bridge broken in nano image 20/08/09 + missing getopt for athctrl.sh



  • I'm using pfSense-1.2.3-2g-20090820-1453-nanobsd.img
    Testing with two alix 2D3 + cm9 and 2D3 + dcma82, bios 0.99h

    First, i noticed that athctrl.sh misses getopt ..

    Second, assume you set OP1(WLAN) as bridged to LAN, having approriate rule to allow all from WLAN to ANY, than wireless clients get an IP adress (either from pfsense, if dhcpd is enabled on LAN, or from another dhcpd on the LAN); wireless clients can ping any hosts on LAN, connect to them (ie ssh to LAN unixes), but they cannot access any services on the pfsense server (cannot access the gui, cannot get dns resolver, cannot reach any "outside of LAN" hosts)

    WLAN config is pretty simple: hostap mode, wpa2, allow intra-BSS, channel 3, ifconfig on pfsense reports ath0 as "associated"

    Now, if i simply revert the bridge to normal static ip mode for the WLAN interface, than everything works as expected ..

    Can someone try to reproduce the setup and report your findings ?

    (Ans possibly add getopt to next snapshots ;)

    Best regards.



  • I asked Scott to add getopt.

    Paste the contents of ifconfig while bridged



  • Aha, i had, by some unknown way (and trust me i tried to figure how) managed last sunday to get the brdige running .. and it did, untill tonight
    The alix did not reboot in between, but same behaviour :
    I can reach my servers on LAN fine, but i cannot ping nor traceroute to the pfsense LAN IP
    Therefore, i have no access to the net .. since i cannot reach the gw …

    Note :
    Alix 2D3 (bios 0.99h)
    Same snapshot as before
    dhcpd is enabled on LAN
    WLAN (OPT2, ath0) bridged to LAN (vr0)
    WAN on vr2, static IP
    PPTPD on WAN

    Below is my ifconfig:

    vr0: flags=8943 <up,broadcast,running,promisc,simplex,multicast>metric 0 mtu 1500
    options=280b <rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic>ether 00:0d:b9:15:69:0c
    inet 10.0.33.254 netmask 0xffffff00 broadcast 10.0.33.255
    inet6 fe80::20d:b9ff:fe15:690c%vr0 prefixlen 64 scopeid 0x1
    media: Ethernet autoselect (100baseTX <full-duplex>)
    status: active
    vr1: flags=8802 <broadcast,simplex,multicast>metric 0 mtu 1500
    options=280b <rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic>ether 00:0d:b9:15:69:0d
    media: Ethernet autoselect (none)
    status: no carrier
    vr2: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500
    options=280b <rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic>ether 00:0d:b9:15:69:0e
    inet6 fe80::20d:b9ff:fe15:690e%vr2 prefixlen 64 scopeid 0x3
    inet xxx.xxx.xxx.xxx netmask 0xffffff00 broadcast 82.235.179.255
    media: Ethernet autoselect (100baseTX <full-duplex>)
    status: active
    ath0: flags=8943 <up,broadcast,running,promisc,simplex,multicast>metric 0 mtu 1500
    ether 00:0b:6b:2d:e6:7e
    inet6 fe80::20b:6bff:fe2d:e67e%ath0 prefixlen 64 scopeid 0x4
    media: IEEE 802.11 Wireless Ethernet autoselect mode 11g <hostap>status: associated
    ssid Dune channel 3 (2422 Mhz 11g) bssid 00:0b:6b:2d:e6:7e
    authmode WPA1+WPA2/802.11i privacy MIXED deftxkey 3 TKIP 2:128-bit
    TKIP 3:128-bit txpower 31.5 scanvalid 60 bgscan bgscanintvl 300
    bgscanidle 250 roam:rssi11g 7 roam:rate11g 5 protmode RTSCTS burst
    dtimperiod 1
    pflog0: flags=100 <promisc>metric 0 mtu 33204
    pfsync0: flags=41 <up,running>metric 0 mtu 1460
    pfsync: syncdev: lo0 syncpeer: 224.0.0.240 maxupd: 128
    enc0: flags=41 <up,running>metric 0 mtu 1536
    lo0: flags=8049 <up,loopback,running,multicast>metric 0 mtu 16384
    inet 127.0.0.1 netmask 0xff000000
    inet6 ::1 prefixlen 128
    inet6 fe80::1%lo0 prefixlen 64 scopeid 0x8
    bridge0: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500
    ether ee:c3:50:ff:1b:65
    id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
    maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
    root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
    member: vr0 flags=143 <learning,discover,autoedge,autoptp>ifmaxaddr 0 port 1 priority 128 path cost 200000
    member: ath0 flags=143 <learning,discover,autoedge,autoptp>ifmaxaddr 0 port 4 priority 128 path cost 370370
    ng0: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng1: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng2: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng3: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng4: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng5: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng6: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng7: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng8: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng9: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng10: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng11: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng12: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng13: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng14: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng15: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500
    ng16: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500</pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></pointopoint,noarp,simplex,multicast></learning,discover,autoedge,autoptp></learning,discover,autoedge,autoptp></up,broadcast,running,simplex,multicast></up,loopback,running,multicast></up,running></up,running></promisc></hostap></up,broadcast,running,promisc,simplex,multicast></full-duplex></rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic></up,broadcast,running,simplex,multicast></rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic></broadcast,simplex,multicast></full-duplex></rxcsum,txcsum,vlan_mtu,wol_ucast,wol_magic></up,broadcast,running,promisc,simplex,multicast>


Log in to reply