WLAN to LAN access issue



  • I am not sure if this is the right category, but it seems my problem is related to firewall rules.

    I have 3 networks, WAN (DHCP), LAN (10.10.1.0/24), and WLAN (10.10.2.0/24). I have several devices on the LAN network, e.g. web servers on 10.10.1.109:80 or 10.10.1.110:8080 that are accessible just fine from stations on the WLAN subnet or the WAN (via NAT). However, there is an IP camera at 10.10.1.200:20000 that I cannot connect to from the WAN or the WLAN. It is perfectly accessible from the LAN network. Do I need an explicit rule for accessing the 10.10.1.200 IP from the 10.10.2.* subnet?
    I currently have a single rule for the WLAN interface that allows everything:

    Proto  Source  Port  Destination  Port  Gateway  Schedule  Description

    WAN interface (vr1)
    Status up
    DHCP up 
    MAC address 00:18:01:13::
    IP address 173.48..
    Subnet mask 255.255.255.0
    Gateway 173.48.105.1
    ISP DNS servers 71.243.0.12
    71.250.0.12
    Media 100baseTX <full-duplex>In/out packets 97928/79668 (77.69 MB/13.93 MB)
    In/out errors 0/0
    Collisions 0

    LAN interface (vr0)
    Status up
    MAC address 00:0d:b9:1a:1b:1c
    IP address 10.10.1.1 
    Subnet mask 255.255.255.0
    Media 100baseTX <full-duplex>In/out packets 594685/543479 (410.65 MB/228.45 MB)
    In/out errors 0/0
    Collisions 0

    WLAN interface (ath0)
    Status associated
    MAC address 00:0b:6b:2f:ef:c3
    IP address 10.10.2.1 
    Subnet mask 255.255.255.0
    Media autoselect mode 11g <hostap>Channel 2
    SSID *******
    In/out packets 474041/519185 (161.36 MB/407.87 MB)
    In/out errors 668/5
    Collisions 0</hostap></full-duplex></full-duplex>



  • An allow-all rule should work.  When you say you can't access the webcam from the WLAN, does it just hang?  Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)



  • @danswartz:

    An allow-all rule should work.  When you say you can't access the webcam from the WLAN, does it just hang?  Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)

    Thanks, you are truly a hero! I indeed forgot to change the web cam's gateway address when I replaced my firewall.



  • sweet!


Log in to reply