Wan interface setup won't work



  • I have installed pfSense successfully and everything works.

    My setup is like this:
    Internet comes in trough my modem (DHCP). It leaves the modem into my network trough (X.X.0.1).

    Then the internet comes into my firewall (pfSense)(WAN X.X.0.5)(DHCP) and leave it again trough (LAN X.X.0.3).

    Now, I would like to setup the WAN interface (X.X.0.5) not with DHCP but static. I tried changing the WAN configuration to a static IP address (X.X.0.2) and the gateway to (X.X.0.1). This will NOT work.

    I want my setup like this: (3 devices modem, firewall, router)

    [modem in DHCP–---out X.X.0.1]–---[firewall in X.X.0.2–---out X.X.0.3]–---[router in X.X.0.4–---out X.X.1.1]–---> network

    Can somebody provide a little help ? I don't know what I'm doing wrong.



  • Is your modem a Modem and router combination or just a modem?

    If it is just a modem, then your pfSense WAN IP is issued by the ISP.  You can't just assign a static IP and expect it to work since the ISP will likely lock out the other IPs that are not issued.



  • Your pfSense interfaces need to be on distinct IP subnets else routeing won't behave predictably. Your pfSense LAN and WAN interfaces are on the same IP subnet.



  • My modem includes a router, so no ISP problem.

    Like wallabybob says, I have reconfigured the interfaces to different subnets:

    [modem in DHCP(isp)–---out X.X.0.1]–---[firewall in (DHCP)–---out X.X.2.1]–---[router in X.X.2.2–---out X.X.1.1]–---> network

    So I can't give the firewall WAN interface a static ip ?



  • @geluykens:

    My modem includes a router, so no ISP problem.

    Like wallabybob says, I have reconfigured the interfaces to different subnets:

    [modem in DHCP(isp)–---out X.X.0.1]–---[firewall in (DHCP)–---out X.X.2.1]–---[router in X.X.2.2–---out X.X.1.1]–---> network

    So I can't give the firewall WAN interface a static ip ?

    I just tried and everything stiil works. My setup now is:
    [modem in DHCP(isp)–---out X.X.0.1]–---[firewall in X.X.0.2–---out X.X.2.1]–---[router in X.X.2.2–---out X.X.1.1]–---> network

    Thx for the support.


Log in to reply