-
Hello,
Has anyone successfully done this?
I can get the WAN to work internally, as I can download package list, nslookup, etc.
However, I cannot get any routing to the LAN by any of the myriad settings changes I make.I am sure some will chastise me, WHY are you even doing this?
Shrug, because I wish to.Before, I had OpenWRT facing my ISP router, then the pfsense box feeding my switch for everything else.
Now I want the OpenWRT router behind the pfsense box that is facing my ISP router.Thanks.
-
@buggz what exactly is not working?
The details of what "nat router" or order of the devices doesn't make any difference for setup.. And putting a 2nd nat router behind another one works out of the box regardless of maker/software etc..
As long as your network A and B do not overlap with each other, or the wan on router 1 not overlapping with A or B it makes little different what device 1 or 2 is or what order they are in..
Now if your wanting something from the internet to be able to create unsolicited connections to something behind Nat router 2, you would have to forward traffic at 1 to router 2 wan IP. And then forward on router 2 to where you want the traffic to go.
if you are placing devices on network A and want devices on A to talk to B you would also have to set that up as a forward on router 2 and device on A would have to hit routers 2 wan IP to get to the thing behind B.
But to be honest.. For just a device on A or B to talk to the internet this works out of the box no matter what nat router is what order.. you could could have way more than 2 nats as well.. you could have say 4 nats going on and as long as you didn't have networks overlapping the client behind router 4 would just work out of the box..
A nat router behind another nat router, to router 1 in the drawing that 2nd nat router is just a client on its network like any other client on network A.
edit: I moved this to nat section, this has nothing to do with netgate hardware or a to be honest any sort of hardware..
Now if your 2nd router device is not doing nat.. Then things get a bit different, and you would have to make sure your 1st router is natting the downstream network.. And if your wanting to put devices on network A and want things on A and B to talk to each other your more than likely going to run into asymmetrical issues, if you don't say host route on devices on network A. And or use a transit/connector network to connect your routers - so that no "hosts" are on the transit network, etc.
-
J johnpoz moved this topic from Hardware on
-
Yup should 'just work' if there are no subnet conflicts.
Except, as @johnpoz says, for connecting from networkA to networkB. That is a classic asymmetric routing scenario.
-
Thanks for all the replies!
I have FINALLY gotten one of my OpenWRT devices to work.
Now to replicate to other devices.
I am finding my problem is from tinkering with too many things at once.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.