Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Multi-Lan routing

    Routing and Multi WAN
    3
    5
    2849
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kbleeker last edited by

      Hi All,

      I'm quite the newbie, but I've spent a few hours looking over this, and can't quite spot the problem.  ???

      I have the usual LAN nic, which is working great with traffic to WAN, however I have 2 more LAN's, which I'd like to set up routing for. I have installed an OPT nic for each, and named them. The IP ranges for the two LANs are 10.100.100.x and 10.0.5.x. I have created all the firewall rules I can possibly think to create, to no avail. For setting up purposes, I want full access from LAN to each of the other two networks, but not between them.
      I suspect the problem lies with static routes, but I know too little about how it should work in this scenario.

      Can someone tell me what it would require, for example, to be able to ping 10.100.100.x from my LAN(10.0.0.x) Once I know how that works, I'm fairly confident I'll be able to work out the rest from there.

      Thanks for taking the time to read this. :-)

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        That should all work out of the box, with appropriate firewall rules. You do not need static routes for directly connected subnets.

        Do you have multi-wan on this box as well?

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • K
          kbleeker last edited by

          Hi jimp,

          Thanks for the reply. That's what I initially thought, but what I tried didn't seem to work.

          To double check: If my LAN interface has an IP of 10.0.0.1/24, and my OPT6 has an IP of 10.100.100.1/24, and I have rules looking something like this:
          LAN

          OPT6

          then it should allow all protocols from all IP's in either range, to all IP's in the other range, therefore I SHOULD be able to ping across the two? I haven't set up an routing for either net which could interfere…

          And no, no multi-WAN, so I presume this thread is about to move house.

          -Kevin

          1 Reply Last reply Reply Quote 0
          • C
            cmb last edited by

            @kevbee:

            then it should allow all protocols from all IP's in either range, to all IP's in the other range, therefore I SHOULD be able to ping across the two?

            Assuming no rules above those that block the traffic, the appropriate host IP configuration (correct IP, subnet mask, gateway), and no host firewalls, yes.

            1 Reply Last reply Reply Quote 0
            • K
              kbleeker last edited by

              ;D
              Thank you both for your assistance, I've managed to achieve what I set out to do, although it cost me a sleepless night.
              Turns out there was a static route problem(there was a router on the OPT6 network, which was the gateway for all the machines. I setup static routing on said router for the LAN subnet through the OPT6 address, and now she works like a charm!)

              Once again, thanks a stack…once I was able to rule out my PFsense box as the problem, I knew where to look. Couldn't have done it without you guys!

              1 Reply Last reply Reply Quote 0
              • First post
                Last post