Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Getting private/local IP on WAN

    Scheduled Pinned Locked Moved General pfSense Questions
    64 Posts 3 Posters 8.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      aelakkad
      last edited by

      I use TP-LINK VR600 instead of my ISP provided router, it supports bridge mode.

      My country uses PPPoE & VDSL over a copper telephone wire. Annex

      The IP range on the router is 192.168.100.1/24 and 192.168.50.1 on pfsense LAN. But WAN keeps getting 192.168.100.108 when set to DHCP.

      Tried resetting pfsense and the router and having pfsense the only device plugged in to the router but same result. It just changed to 192.168.100.106.

      Not behind a CG-NAT, I checked that too.

      I tried having the router in bridge mode (basically adding another WAN interface and having it in bridge mode) and removed the PPPoE WAN interface. Changed WAN type in pfsense to PPPoE and added my line details, but it times out trying to connect to PPPoE and keep retrying.

      Any help? I know it'll work with double NAT but it not optimal.

      Thanks in advance

      JKnottJ 1 Reply Last reply Reply Quote 0
      • JKnottJ
        JKnott @aelakkad
        last edited by

        @aelakkad said in Getting private/local IP on WAN:

        But WAN keeps getting 192.168.100.108 when set to DHCP.

        Have you talked to your ISP about this? If you get that address with DHCP, then there's a DHCP server somewhere providing it.

        PfSense running on Qotom mini PC
        i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
        UniFi AC-Lite access point

        I haven't lost my mind. It's around here...somewhere...

        A 1 Reply Last reply Reply Quote 0
        • A
          aelakkad @JKnott
          last edited by

          @JKnott I tried disabling the DHCP server on the router too. The thing is when in PPPoE mode the router (VR600) gets a normal public IP. I tried talking to them but they weren't of any help.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            I would expect to a device like that set in bridge mode to bridge the PPPoE connection requiring pfSense to do it.

            It may need a VLAN if the router doesn't apply it in bridge mode.

            A 1 Reply Last reply Reply Quote 0
            • A
              aelakkad @stephenw10
              last edited by

              @stephenw10 the router has the ability to apply a VLAN to the bridge interface but I don't know which number to pick. It does support PPP pass through and its turned one. What I don't understand is that if I set it to bridge mode I have to set the PPPoE details in pfsense itself right? it basically acts as a modem only right? it just waits for something to initiate a PPPoE connection right?

              1 Reply Last reply Reply Quote 0
              • stephenw10S
                stephenw10 Netgate Administrator
                last edited by

                Yes pfSense should be configured for PPPoE, it does the ppp session.

                Can you see what VLAN (if any) the router uses when it isn't in bridge mode?

                If not you can probably just Google it for your ISP to find out which VLAN to use.

                Steve

                A 1 Reply Last reply Reply Quote 0
                • A
                  aelakkad @stephenw10
                  last edited by

                  @stephenw10 it was set to N/A for VID for the PPPoE (which my guess is basically VID 1 as far as I know, I tried setting the bridge to 1 but it times out too)

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S
                    stephenw10 Netgate Administrator
                    last edited by

                    VLAN1 is not the same as no VLAN. If that's correct it doesn't require a VLAN.

                    Does the ISP have any documentation for 3rd party routers?

                    A 2 Replies Last reply Reply Quote 0
                    • A
                      aelakkad @stephenw10
                      last edited by

                      @stephenw10 trying it now without vlan ID, only bridge MODE and trying to set pppoe in pfsense with same ISP details that were used on the router before pfsense. Getting "PPPoE connection timeout after 9 seconds" and keeps trying to reconnect endlessly.

                      No they don't provide any docs, they are basically clueless customers service reps.

                      1 Reply Last reply Reply Quote 0
                      • A
                        aelakkad @stephenw10
                        last edited by

                        @stephenw10 also I tested plugging in the router directly to my windows PC (it didn't get IP, I disabled DHCP in the VR600 while it's in bridge mode) and I went and created a new connection from settings and just used the username and password of my PPPoE connection that I used on the router and it worked. PPPoE connection succeeded. Now I'm trying to figure out why it'd work on windows and not in pfsense, using the same exact details.

                        1 Reply Last reply Reply Quote 0
                        • stephenw10S
                          stephenw10 Netgate Administrator
                          last edited by

                          How are you creating the connection in pfSense? Is it using the correct NIC?

                          A 1 Reply Last reply Reply Quote 0
                          • A
                            aelakkad @stephenw10
                            last edited by

                            @stephenw10 yes I have a PCI quad port intel NIC (igb0,igb1,igb2,igb3 and pfsense can see all the interfaces correctly, along with the on board realtek (rel0) and I tried testing with the onboard one but same result. The assignments have PPPoE on igb0 and the cable from port 1 from the router is connected to it and also in PPPs configuration is correct. The PPPoE connection working on windows means the bridge mode is actually working correctly right? and the problem is with pfsense?

                            1 Reply Last reply Reply Quote 0
                            • stephenw10S
                              stephenw10 Netgate Administrator
                              last edited by

                              Yes, that's what I would think. If you can establish a PPPoE connection from Windows it should work from pfSense.

                              You may need to power cycle the modem if it's locked to the MAC address. That's unusual for PPPoE connections but can happen.

                              A 1 Reply Last reply Reply Quote 0
                              • A
                                aelakkad @stephenw10
                                last edited by

                                @stephenw10 yea I tried that too 😞 , and I even tried the mac address spoofing (took the mac address of the router and added it to the WAN config) and it didn't work too.

                                1 Reply Last reply Reply Quote 0
                                • stephenw10S
                                  stephenw10 Netgate Administrator
                                  last edited by

                                  If you spoof the MAC if should be the MAC of the Windows device. You can't use the MAC of the router as that is still in the link.

                                  A 1 Reply Last reply Reply Quote 0
                                  • A
                                    aelakkad @stephenw10
                                    last edited by

                                    @stephenw10 I mean without using a windows device, just the cable between the router (in bridge mode) and the pfsense wan port I tried spoofing the mac of the router so that PPPoeE connection thinks its the same device but anyway I tried without spoofing too, same result. Do you think I should some how increase the timeout limit? even on the router itself and when testing dial up with windows it takes more than 10 seconds to get a connection.

                                    1 Reply Last reply Reply Quote 0
                                    • stephenw10S
                                      stephenw10 Netgate Administrator
                                      last edited by

                                      Hmm, I really expect to see something even if it's a failure. The PPP logs you're seeing means nothing it coming back. Or at least it's not seeing it.
                                      It behaves identically on re0 as any of the igb NICs?

                                      Try running a pcap on the parent NIC and see if it shows anything at all coming back from the modem or ISP.

                                      Steve

                                      A 1 Reply Last reply Reply Quote 0
                                      • A
                                        aelakkad @stephenw10
                                        last edited by aelakkad

                                        @stephenw10

                                        Screenshot 2023-09-20 175251.png

                                        its not returning anything. I didn't try pcap on re0 but the same thing was happening only time outs. What does this mean? I really appreciate your help, Steve.

                                        1 Reply Last reply Reply Quote 0
                                        • A
                                          aelakkad
                                          last edited by

                                          @stephenw10 I also tried it on the same interface but chose the unassigned one and it gave this

                                          5f57a091-0e9a-4394-b6a7-6cadbf6ba70c-image.png

                                          1 Reply Last reply Reply Quote 0
                                          • stephenw10S
                                            stephenw10 Netgate Administrator
                                            last edited by

                                            Yeah the pcap needs to be on the PPPoE parent interface not the PPPoE itself. So on re0 or igb0 etc.

                                            You won't see anything over the PPPoE until it connects.

                                            A 2 Replies Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.