<![CDATA[Reasons unnoticed]]>Attached is a layout of all relevant devices on my network.                                 
I am unable to get out to the internet with this setup. I am also unable to access the webgui with this setup. What am i missing?

Router config
cisco 3825 output interface and routing outputs

interface fa 1/1
ip address 192.168.255.253/30
ip virtual-reassembly
duplex full
speed 100
auto discover qos

ip route 0.0.0.0 0.0.0.0 192.168.255.254

bryan_pfSense.jpg
bryan_pfSense.jpg_thumb

]]>https://forum.netgate.com/topic/39348/reasons-unnoticedRSS for NodeTue, 21 Apr 2026 20:23:19 GMTMon, 21 Nov 2011 21:11:39 GMT60<![CDATA[Reply to Reasons unnoticed on Tue, 22 Nov 2011 13:19:00 GMT]]>i was able to add a static route, then gain access to the firewall. However now all traffic appears to be getting blocked by the firewall.
when i select a blocked packet i get this pop up
@1Scrub in on rl0 (lan interface) all fragment reasemble.

I am also seeing allot of collisionson that interface. Any help would be great.

Thanks

update
collision issues has been solved. Needed to put the cisco interface to auto duplex and collisions stoped accuring. I am however still getting blocked traffic even though i have any any statements on both the WAN and LAN interface. Still have no clue as to why.

]]>https://forum.netgate.com/post/305519https://forum.netgate.com/post/305519Tue, 22 Nov 2011 13:19:00 GMT<![CDATA[Reply to Reasons unnoticed on Tue, 22 Nov 2011 02:09:57 GMT]]>thanks for the info, i am going to give it a try. Hope i can figure out to fix all this from the gui.

]]>https://forum.netgate.com/post/305505https://forum.netgate.com/post/305505Tue, 22 Nov 2011 02:09:57 GMT<![CDATA[Reply to Reasons unnoticed on Tue, 22 Nov 2011 00:57:21 GMT]]>Yes but not that will survive long term. Can do it manually such as :

route add -net 192.168.2.0/24 192.168.1.2

as described here.
http://www.freebsd.org/doc/handbook/network-routing.html

firewall would still block you at that point, you can run 'pfctl -d' to disable it temporarily (though things will kick it back on so that won't last long).

Then get into the GUI and fix your routes and rules. It would be easier to put a PC on the /30 LAN and just do it all via the web.

]]>https://forum.netgate.com/post/305496https://forum.netgate.com/post/305496Tue, 22 Nov 2011 00:57:21 GMT<![CDATA[Reply to Reasons unnoticed on Mon, 21 Nov 2011 23:31:42 GMT]]>@cmb:

Probably missing a route on pfSense to use the Cisco to get back to those other subnets, and/or didn't change the default LAN rule (which only permits the LAN subnet itself by default).

is there a way to do this from the command line? Like i said i am unable to do this from the gui.

]]>https://forum.netgate.com/post/305489https://forum.netgate.com/post/305489Mon, 21 Nov 2011 23:31:42 GMT<![CDATA[Reply to Reasons unnoticed on Mon, 21 Nov 2011 22:09:47 GMT]]>Probably missing a route on pfSense to use the Cisco to get back to those other subnets, and/or didn't change the default LAN rule (which only permits the LAN subnet itself by default).

]]>https://forum.netgate.com/post/305471https://forum.netgate.com/post/305471Mon, 21 Nov 2011 22:09:47 GMT