Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WLAN to LAN access issue

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 2 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cdonner
      last edited by

      I am not sure if this is the right category, but it seems my problem is related to firewall rules.

      I have 3 networks, WAN (DHCP), LAN (10.10.1.0/24), and WLAN (10.10.2.0/24). I have several devices on the LAN network, e.g. web servers on 10.10.1.109:80 or 10.10.1.110:8080 that are accessible just fine from stations on the WLAN subnet or the WAN (via NAT). However, there is an IP camera at 10.10.1.200:20000 that I cannot connect to from the WAN or the WLAN. It is perfectly accessible from the LAN network. Do I need an explicit rule for accessing the 10.10.1.200 IP from the 10.10.2.* subnet?
      I currently have a single rule for the WLAN interface that allows everything:

      Proto  Source  Port  Destination  Port  Gateway  Schedule  Description

      WAN interface (vr1)
      Status up
      DHCP up 
      MAC address 00:18:01:13::
      IP address 173.48..
      Subnet mask 255.255.255.0
      Gateway 173.48.105.1
      ISP DNS servers 71.243.0.12
      71.250.0.12
      Media 100baseTX <full-duplex>In/out packets 97928/79668 (77.69 MB/13.93 MB)
      In/out errors 0/0
      Collisions 0

      LAN interface (vr0)
      Status up
      MAC address 00:0d:b9:1a:1b:1c
      IP address 10.10.1.1 
      Subnet mask 255.255.255.0
      Media 100baseTX <full-duplex>In/out packets 594685/543479 (410.65 MB/228.45 MB)
      In/out errors 0/0
      Collisions 0

      WLAN interface (ath0)
      Status associated
      MAC address 00:0b:6b:2f:ef:c3
      IP address 10.10.2.1 
      Subnet mask 255.255.255.0
      Media autoselect mode 11g <hostap>Channel 2
      SSID *******
      In/out packets 474041/519185 (161.36 MB/407.87 MB)
      In/out errors 668/5
      Collisions 0</hostap></full-duplex></full-duplex>

      1 Reply Last reply Reply Quote 0
      • D
        danswartz
        last edited by

        An allow-all rule should work.  When you say you can't access the webcam from the WLAN, does it just hang?  Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)

        1 Reply Last reply Reply Quote 0
        • C
          cdonner
          last edited by

          @danswartz:

          An allow-all rule should work.  When you say you can't access the webcam from the WLAN, does it just hang?  Does the webcam have a default gateway pointing at the pfsense (if not, that would explain this.)

          Thanks, you are truly a hero! I indeed forgot to change the web cam's gateway address when I replaced my firewall.

          1 Reply Last reply Reply Quote 0
          • D
            danswartz
            last edited by

            sweet!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.