Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [Solved] Routing between LAN & DMZ

    Scheduled Pinned Locked Moved
    Routing and Multi WAN
    1
    1
    27
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kshots
      last edited by kshots

      Just changed my ISP and upgraded to PFSense+ (was on CE). I have a LAN and a DMZ, previous config worked fine... moved the 1:1 NAT to the new ISP address mapping (static /29 pool), and apparently the LAN can't talk to the DMZ and vice versa... the LAN can talk to the DMZ pfsense interface (10.4.14.1) no problem, but cannot reach any hosts on the /29 of the DMZ network. Both the LAN and the DMZ can reach the internet without issue. I'm not yet certain if the WAN can reach the DMZ - more important for now that the LAN can reach it.

      Probably missed a configuration somewhere, but I can't think of what it may be.

      Neither the LAN nor the DMZ have a gateway assigned (which should be correct). The LAN has a "pass anything outbound" rule which appears to work to reach the internet. The DMZ has a rule to allow anything out that's not touching the LAN, which appears to be working. Below is a screengrab of my LAN rules (very basic settings).

      e18f31f1-6379-4722-b718-48d938fae09d-image.png

      Here's my 1:1 NAT settings:

      e1038010-c861-4700-970e-fe63913c22e7-image.png

      I've adjusted my Virtual IPs appropriately:

      4b8f3114-d1e8-420c-97c9-0d699803a548-image.png

      Not sure what else to check :(

      EDIT: Found the problem - new ISP moved the modem to the end of the IP block rather than the start, so my gateway was wrong on the DMZ hosts after I moved my pfsense interface from .2 to .1 - adjusting the gateway on one host caused it to suddenly start responding.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post