• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Static-routes between two nested pfSense

Scheduled Pinned Locked Moved General pfSense Questions
4 Posts 3 Posters 242 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • M
    MacUsers
    last edited by MacUsers Jan 25, 2025, 6:48 PM Jan 25, 2025, 6:47 PM

    I have two pfSense runnig atm (for testing) and this how it's connected:

    • PFS2 is connected from LHST interface (VLAN: 10.10.76.65/26) on PFS1
    • PFS2 receiving the IP 10.10.76.66 on it's WAN interface
    • LAN2 interface (192.168.20.1/28) on PFS2 running admin GUI on the IP: 192.168.20.1

    I'm trying to access the PFS2 admin GUI from the computer(s) connected to the WIFI interface (VLAN: 10.2.10.1/28) of PFS1.

    First of all, is it possible?
    I tried with creating a GATEWAY and a static-route using that gateway etc. and in the end I got totaly lost. I removed everything and starting fresh again: can any one tell me what gateway and route I need to create to achieve that pls?

    -S

    1 Reply Last reply Reply Quote 0
    • S
      stephenw10 Netgate Administrator
      last edited by Jan 25, 2025, 8:31 PM

      Just to access the PFS2 webgui you should be able to use the WAN address, 10.10.76.66. As long as PFS2 has firewall rules to allow that on WAN you should be able to connect. No need to add any gateways or routes on PFS1 unless you need to access the PFS2 LAN subnet.

      Steve

      M 1 Reply Last reply Jan 25, 2025, 9:46 PM Reply Quote 0
      • M
        MacUsers @stephenw10
        last edited by Jan 25, 2025, 9:46 PM

        @stephenw10
        I tried accessing 10.10.76.66 but wasn't able to; so probably because of the firewall rules. What I need to allow on PFS2 WAN interface? Some pointers will be appreciated.

        If that works, I don't necessarily need to access anything on PFS2 LAN atm but maybe in future. So wanted to explore that route too.

        -S

        V 1 Reply Last reply Jan 25, 2025, 10:09 PM Reply Quote 0
        • V
          viragomann @MacUsers
          last edited by Jan 25, 2025, 10:09 PM

          @MacUsers
          By default pfSense blocks all private address ranges on WAN. To disable this, go into the WAN interface setting and remove the check at "block private networks".

          Also you need to add a rule to the WAN to allow access to the web GUI.

          1 Reply Last reply Reply Quote 1
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received