Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Question regarding network design

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 3 Posters 2.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      alltime
      last edited by

      –---
      With the following set-up diagram, are we able to set-up the captive portal to connect to our Domain Controllers through RADIUS for authentication?

      We have not tried the portal but currently we are able to ping the gateway from our PFSense box but unable to ping PFSense from any LAN computers or access the Internet from behind PFSense.  DHCP relay and DHCP server are currently turned off on PFSense.

      [Internet]
        |
        |
        |
      [Gateway]–-192.168.1.1
        |
        |
        |WAN---[PFSENSE]–LAN----
        |
          |
      [Switch]
        |
        |
        |
      [DHCP/DC + DHCP/DC] 192.168.1.2 + 192.168.1.4
        |
        |
      [LAN]

      PFSENSE WAN: 192.168.1.6
      PFSENSE WAN GATEWAY: 192.168.1.1
      PFSENSE LAN: 192.168.2.1
      Subnet WAN: 255.255.255.0

      1 Reply Last reply Reply Quote 0
      • chpalmerC Offline
        chpalmer
        last edited by

        Your "drawing" and your last description dont agree…    Is your lan 192.168.2.0/24?

        Triggering snowflakes one by one..
        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

        1 Reply Last reply Reply Quote 0
        • A Offline
          alltime
          last edited by

          My apologies, the LAN is set-up at 192.168.1.7/24

          1 Reply Last reply Reply Quote 0
          • A Offline
            alltime
            last edited by

            Also although configured in front of the Domain Controllers, which act as DHCP and DNS, PFSense is configured with Domain Controllers as DNS.

            1 Reply Last reply Reply Quote 0
            • W Offline
              wallabybob
              last edited by

              Your diagram shows 2 LANs. Are these the same LAN or different LANs?

              If different, which LAN are you talking about when you say "unable to ping PFSense from any LAN computers"?

              Apparently you have both the LAN and WAN pfSense interfaces on the same IP subnet (192.168.1.0/24). This is an invalid configuration.

              I presume you are trying to test something (captive portal?). If you describe what you want to do I would be happy to make suggestions.

              @alltime:

              With the following set-up diagram, are we able to set-up the captive portal to connect to our Domain Controllers through RADIUS for authentication?

              I have been using captive portal but not with an external RADIUS server. I don't see any reason why something like the configuration you have drawn would not work provided you put together a valid configuration.

              1 Reply Last reply Reply Quote 0
              • A Offline
                alltime
                last edited by

                I was able to figure out the issue.  The problem was that I PFSense supplying DHCP addresses to the domain controllers.  This seemed to cause the issue.

                The solution was:

                Changed gateway IP to 192.168.3.1
                PFSense WAN - 192.168.3.2
                PFSense LAN - 192.168.1.1

                Our LAN computers that previously connected to the gateway address of 192.168.1.1 now connect to PFSense using that address.  This allowed us to connect to the internet and throughout our network.

                Thank you Wallabybob

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.