Bridging to WAN problem



  • hello
    I have experienced a little problem with newest version off pfSense. I have 3 wireless interfaces in AP mode. Each of them are bridged to WAN interface. NAT and firewall are disabled. Simple routing platform working as AccesPoint.
    The problem is with changing anything in configuration off OPT wireless interfaces… It causes system hang, and even crash. After reboot, loader stops at configuring OPT interfaces and nothing happen further... if it happens, only one possible option is hard reset and pray... :-
    After that system comes up, but has some error in configurations files. I don't remember corectly but there is about main configuration banner or sth...  ??? Result is, system appears to be good but don't  react on keyboard, don't accept any connections, reinstall is needed.

    :(
    I used BETA4 before, for the long time, without any off theese problems.

    Nowdays I went back to my BETA4 version, couse I don't need any additional special function, except stability.
    Any ideas??? solutions?

    Attached piece of my conf files below.

    	 <interfaces><lan><if>tx0</if>
    			<ipaddr>192.168.2.1</ipaddr>
    			<subnet>24</subnet>
    			 <media><mediaopt><bandwidth>100</bandwidth>
    			<bandwidthtype>Mb</bandwidthtype></mediaopt></media></lan> 
    		 <wan><if>xl0</if>
    			 <mtu><media><mediaopt><bandwidth>100</bandwidth>
    			<bandwidthtype>Mb</bandwidthtype>
    			<ipaddr>dhcp</ipaddr>
    			 <dhcphostname><spoofmac></spoofmac></dhcphostname></mediaopt></media></mtu></wan> 
    		 <opt1><descr>OPT1</descr>
    			<if>wi0</if>
    			 <wireless><standard>11b</standard>
    				<mode>hostap</mode>
    				<protmode>off</protmode>
    				<ssid>szybkoNET</ssid>
    				<channel>4</channel>
    				 <authmode><txpower>99</txpower>
    				 <distance><wpa><macaddr_acl><auth_algs>1</auth_algs>
    					<wpa_mode>1</wpa_mode>
    					<wpa_key_mgmt>WPA-PSK</wpa_key_mgmt>
    					<wpa_pairwise>CCMP TKIP</wpa_pairwise>
    					<wpa_group_rekey>60</wpa_group_rekey>
    					<wpa_gmk_rekey>3600</wpa_gmk_rekey>
    					 <passphrase><ext_wpa_sw></ext_wpa_sw></passphrase></macaddr_acl></wpa></distance></authmode></wireless> 
    			<bridge>wan</bridge>
    			 <ipaddr><subnet>32</subnet>
    			 <gateway><spoofmac><mtu><enable></enable></mtu></spoofmac></gateway></ipaddr></opt1> 
    		 <opt2><descr>OPT2</descr>
    			<if>wi1</if>
    			 <wireless><standard>11b</standard>
    				<mode>hostap</mode>
    				<protmode>off</protmode>
    				<ssid>szybkoNET</ssid>
    				<channel>1</channel>
    				<authmode></authmode>
    				<txpower>99</txpower>
    				 <distance><wpa><macaddr_acl></macaddr_acl>
    					<auth_algs>1</auth_algs>
    					<wpa_mode>1</wpa_mode>
    					<wpa_key_mgmt>WPA-PSK</wpa_key_mgmt>
    					<wpa_pairwise>CCMP TKIP</wpa_pairwise>
    					<wpa_group_rekey>60</wpa_group_rekey>
    					<wpa_gmk_rekey>3600</wpa_gmk_rekey>
    					 <passphrase><ext_wpa_sw></ext_wpa_sw></passphrase></wpa></distance></wireless> 
    			<bridge>wan</bridge>
    			 <enable><ipaddr><subnet>32</subnet>
    			 <gateway><spoofmac></spoofmac></gateway></ipaddr></enable></opt2> 
    		 <opt3><descr>OPT3</descr>
    			<if>wi2</if>
    			 <wireless><standard>11b</standard>
    				<mode>hostap</mode>
    				<protmode>off</protmode>
    				<ssid>szybkoNET</ssid>
    				<channel>11</channel>
    				 <authmode><txpower>99</txpower>
    				 <distance><wpa><macaddr_acl><auth_algs>1</auth_algs>
    					<wpa_mode>1</wpa_mode>
    					<wpa_key_mgmt>WPA-PSK</wpa_key_mgmt>
    					<wpa_pairwise>CCMP TKIP</wpa_pairwise>
    					<wpa_group_rekey>60</wpa_group_rekey>
    					<wpa_gmk_rekey>3600</wpa_gmk_rekey>
    					 <passphrase><ext_wpa_sw></ext_wpa_sw></passphrase></macaddr_acl></wpa></distance></authmode></wireless> 
    			<bridge>wan</bridge>
    			 <enable><ipaddr><subnet>32</subnet>
    			 <gateway><spoofmac></spoofmac></gateway></ipaddr></enable></opt3> 
    		 <opt4><descr>OPT4</descr>
    			<if>wi3</if>
    			 <wireless><standard>11b</standard>
    				<mode>hostap</mode>
    				<protmode>off</protmode>
    				<ssid>szybkoNET</ssid>
    				<channel>7</channel>
    				 <authmode><txpower>99</txpower>
    				 <distance><wpa><macaddr_acl><auth_algs>1</auth_algs>
    					<wpa_mode>1</wpa_mode>
    					<wpa_key_mgmt>WPA-PSK</wpa_key_mgmt>
    					<wpa_pairwise>CCMP TKIP</wpa_pairwise>
    					<wpa_group_rekey>60</wpa_group_rekey>
    					<wpa_gmk_rekey>3600</wpa_gmk_rekey>
    					 <passphrase><ext_wpa_sw></ext_wpa_sw></passphrase></macaddr_acl></wpa></distance></authmode></wireless> 
    			<bridge>wan</bridge>
    			 <enable><ipaddr><subnet>32</subnet>
    			 <gateway><spoofmac></spoofmac></gateway></ipaddr></enable></opt4></interfaces> 
    


  • You only can bridge one interface to another. This is a limitation in pfSense 1.0.x. In the headcode we already have support for bridging groups (multiple interface bridging). However there is no timeframe for a release of a version with that feature yet.



  • hmmm Actually this is working great for me on BETA4 platform… ;D
    This feature may by very helpfull ;)



  • things have changsed mutch sins then
    the beta's where on freebsd 6.0
    the rc's and 1.0 release and 1.0.1 are on  freebsd 6.1
    the snapshots you can download now are freebsd 6.2 beta


Locked