Reasons unnoticed



  • Attached is a layout of all relevant devices on my network.                                 
    I am unable to get out to the internet with this setup. I am also unable to access the webgui with this setup. What am i missing?

    Router config
    cisco 3825 output interface and routing outputs

    interface fa 1/1
    ip address 192.168.255.253/30
    ip virtual-reassembly
    duplex full
    speed 100
    auto discover qos

    ip route 0.0.0.0 0.0.0.0 192.168.255.254




  • Probably missing a route on pfSense to use the Cisco to get back to those other subnets, and/or didn't change the default LAN rule (which only permits the LAN subnet itself by default).



  • @cmb:

    Probably missing a route on pfSense to use the Cisco to get back to those other subnets, and/or didn't change the default LAN rule (which only permits the LAN subnet itself by default).

    is there a way to do this from the command line? Like i said i am unable to do this from the gui.



  • Yes but not that will survive long term. Can do it manually such as :

    route add -net 192.168.2.0/24 192.168.1.2

    as described here.
    http://www.freebsd.org/doc/handbook/network-routing.html

    firewall would still block you at that point, you can run 'pfctl -d' to disable it temporarily (though things will kick it back on so that won't last long).

    Then get into the GUI and fix your routes and rules. It would be easier to put a PC on the /30 LAN and just do it all via the web.



  • thanks for the info, i am going to give it a try. Hope i can figure out to fix all this from the gui.



  • i was able to add a static route, then gain access to the firewall. However now all traffic appears to be getting blocked by the firewall.
    when i select a blocked packet i get this pop up
    @1Scrub in on rl0 (lan interface) all fragment reasemble.

    I am also seeing allot of collisionson that interface. Any help would be great.

    Thanks

    update
    collision issues has been solved. Needed to put the cisco interface to auto duplex and collisions stoped accuring. I am however still getting blocked traffic even though i have any any statements on both the WAN and LAN interface. Still have no clue as to why.


Log in to reply