Access webui need to open 443?
-
-
It gave me only the ip/24 of my interfaces
I have no url thereI’m in the consol
-
@nadvig23 try
https://docs.netgate.com/pfsense/en/latest/troubleshooting/connect-to-gui.htmlAnd a few of these:
https://docs.netgate.com/pfsense/en/latest/troubleshooting/locked-out.html -
Ok now i have the url showed on the console
Http://192.168.1.200Didn’t ask me to activate https
Now on my laptop on the Lan i have configured for now ip dhcp with 192.168.1.1 as gateway
Go to http://192.168.1.200 nothing!!!
I have check the cable and the switch everything is ok
-
@nadvig23 if the pfSense LAN IP is .200 then why is .1 the gateway ? Do you have a second device providing DHCP?
-
-
It’s working!!! I can access webui from a pc on the Lan!!! I think it was because i didn’t put the 192.168.1.1 as dns on the laptop while trying to access the webui
But since lastnight i got network unreacheable the wan is dhcp detected the ip from my Isp but i can’t ping 8.8.8.8 From the console . Before the ping 8.8.8.8 was working. I check the cable and my isp everything is ok
-
@nadvig23
Try to ping from pfSense WebGUI itself. Diagnostic > Ping
Is this successful? -
-
@nadvig23
So presumably your outbound NAT is not working. Firewall > NAT > Outbound
Is it in automatic mode?
Did you change something or disabling NAT in the System > Advanced settings.Is your WAN set properly? Status > Interfaces
-
Outbound - automatic
I have not yet change something -
In status interfaces
Wan / rl0- status up dhcp
Lan / re0 : up 192.168.1.1
-
I have change my switch (it was a manageable switch …. Weird cannot change the ip gateway for the new one 192.168.1.1) so with the new netgear switch (not manageable this one) now;
Webui Diagnostics Ping:
Host 8.8.8.8
Source wan or lan is 0% lost
So for now this is workingBut the lan pc cannot acces Internet i don’t go out!
Maybe it’s because i have to add firewall rules?
-
@nadvig23 LAN has an allow to any rule out of the box. If that was removed then yes a rule is needed for DNS and Internet. All Interfaces have a hidden deny all rule.
-
I have done no change yet
-
If the rules by default :
Firewall- rules - lan:
Default allow Lan to any ruleWill permit to my laptop from the Lan to go out well i can’t go out to internet
My laptop is 192.168.1.99 with gateway and dns 192.168.1.1
I have put this Mac addr and ip of this laptop in Dhcp server- static mapping…. -
@nadvig23 said in Access webui need to open 443?:
Webui - diagnostics- ping:
Yes !
Host 8.8.8.8
Source wanNo!
Host 8.8.8.8
Source LanI was working on a problem router today that I think has a bad WAN port. I reinstalled, and I had this behavior until I finished the setup wizard. I don't recall having to do that in the past.
You might reset to factory defaults and start over just to see.
-
J jimp moved this topic from Problems Installing or Upgrading pfSense Software on Jul 18, 2023, 3:56 PM
-
hello i was in vacation....
i have bought Netgate sg-2100...it is really great! my network is working now!
just a question...can i plug the wifi router (netgear) in the LAN2 port of Netgate??
thanks -
@nadvig23 you can use any port. On the 2100 the 4 LAN ports are a switch.
-
Or if you want the WIFI AP on a different subnet so you can filter traffic differently you can set on the ports to be a discrete interface:
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/configuring-the-switch-ports.htmlSteve
-
@stephenw10
good idea i prefer to have the wifi on another subnet that the local network. i will folow this documentation, thanks! i have netgear wifi router, i will see how to set up this one too (probably that i need to put this one on static ip 192.168.100.1)?