Help using pfsense to troubleshoot client network issues
-
I'm trying to crack a problem I've been having with my recent Ubuntu 10.04 upgrade and hope to use some of the diagnostic tools in pfSense. Sadly I have just a working knowledge of networking, so this may be a bit of a learning process as well as a diagnostic one; all and any help (as well as patience) is appreciated.
My previous Ubuntu 8.04 configuration had two network interfaces both routed to the same LAN with the same gateway. This functioned for me so as to support different services bound to different interfaces, such as http and smb on one, torrents on another. This routed fine in 8.04 (routing table below). Once I upgraded to 10.04, any packets that traveled beyond the LAN did not seem to return. I checked and there is no local firewall running and no log of locally dropped packets. Thinking that this was strange I set up a virtual machine and tested it in a different environment at work and also with a virtual firewall configuration using pfSense with the same results. When checking the logging on the virtual firewall I don't find any blocked packets. To maintain a control, I also tested several other current operating systems, including Debian 5.04 and Open Solaris 9, all of which routed two interfaces with the same gateway fine (routing info available for these as well, upon request). I rolled back from 10.04 to 9.10 and the problem persists, so the change exits also between 8.04 and 9.10.
Among other things, I'd like to log the return packets as well as the outgoing in hopes of maybe catching the problem there, although I haven't been able to get this to work. This has begun to drive me a bit nuts so if someone would like to play along in a virtualized environment (like with Virtualbox) to at least confirm I'm not bonkers, I'd love the company as well as the help.
Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 10.1.1.0 * 255.255.255.0 U 0 0 0 eth0 10.1.1.0 * 255.255.255.0 U 0 0 0 eth1 default blackbox.xxxx 0.0.0.0 UG 100 0 0 eth1 default blackbox.xxxx 0.0.0.0 UG 100 0 0 eth0