What is the problem with my firewall?
-
Hello,
I followed all the steps in Dark web: Building a Tor Gateway
and the result is as follows:
And:
And:
And:
And:
And:
Tor is running on my pfSense too:
On the client, I can't use Tor.
What is wrong?
Thank you.
-
@hack3rcon said in What is the problem with my firewall?:
followed all the steps in Dark web: Building a Tor Gateway ...
You omitted steps :
The VM setup shows two interfaces. Two interface sis the bare bone minimum for a firewall.
The doc also states :
So the 'first' bridged interface will the WAN.
First implies : there are more interfaces.
Like the second one, the future pfSense LAN.A bit ffurther on, I can see clearly :
so 2 interfaces, WAN and LAN.
Yet, to persist in doing things differently :
where is the WAN ?
So you are not following the doc, but doing something else.The doc is more then 5 years old, so really outdated.
No "help me" PM's please. Use the forum, the community will thank you.
-
@Gertjan already pointed that out to him in one of his many other disjointed threads
-
You could use one interface for this, as though it's a proxy on your network behind some other router. But if you do that you would need to be sure your client devices are using pfSense as their default gateway. They are probably not since the other router exists and is probably doing dhcp for the subnet. That seems to b confirmed by the fact that the only rule on LAN showing any traffic is for the pfSense webgui itself.
Probably also worth pointing out that in a one interface setup like that pfSense will treat that as WAN whatever it's named. Though it must have a gateway.
-
Hello @Gertjan,
I just have one NIC. -
Hello @stephenw10,
I found the problem. I have pfSense on a network with 100 clients. This network has different VLANs with different Default Gateways. Only computers that have the same Default Gateway as pfSense can use pfSense.
Is this because my VM only has one NIC? -
@hack3rcon said in What is the problem with my firewall?:
Only computers that have the same Default Gateway as pfSense can use pfSense.
You mean only clients in the same subnet?
That implies clients from other subnets are being blocked somewhere. Possibly by pfSense itself. The default allow rule only passes traffic from the same subnet so might need to add another rule. Otherwise if could be being blocked on whatever your other router/firewall is.
