Problem with WAN Interface with French ISP

Alesk13Fr

Hi,

I'm not sure to post this topic in the right section, if it isn't, please be indulgent and please move to the right one, thanks in advance.

I'm looking for help, my PfSense 2.0 on OpenVox IPC100, is getting trouble with my ISP, who use a 192.168.0.X ip for 2 TV Receiver in bridge mode.

Schema :

ISP –-> ISP Box - Port 1 --> 192.168.0.X -- TV Box Receiver 1
ISP Box - Port 2 --> 192.168.0.X -- TV Box Receiver 2
ISP Box - Port 3 --> 81.212.XX.X -- PfSense 2.0 (plug on 10/100 - port 1) "WAN" -- DHCP (same as public ISP adress / I've try to put in static IP but same problem)
ISP Box - Port 4 --> Empty. --> 10/100 - Port 2 "LAN2" : Empty
--> 10/10/1000 - Port 3 "LAN1" - 192.168.99.X - DHCP server : Switch 16 Ports (All My Lan) --> PCs / MACs / WiFi
--> WiFi (Internal Card) - Bridge with LAN1

ISP : Free.Fr
PfSense 2.0 : 2.0-RELEASE (i386) built on Tue Sep 13 17:28:43 EDT 2011
WAN : DHCP / All box are empty / Block private networks : Unchecked / Block bogon networks : Unchecked
LAN1 : Static / 192.168.99.250 / All box are empty / Block private networks : Unchecked / Block bogon networks : Unchecked
BRIDGE (WiFi with LAN1) : Type NONE / All box are empty / Block private networks : Unchecked / Block bogon networks : Unchecked

The problem is my Box is using the same method for all 4 port, the box is on Bridge mode, so no router or DMZ is used, only direct connection via the Web, but the ISP is using a strange system, who use an internal DHCP Server ONLY for his TV Receiver, something like 192.169.0.X, and when the Box need to update or access to thte TV Receiver, my Pfsense who is plug directly to the Box in Static Public IP Address, is freezing.

My WAN status is frozen, I'm not having any more access to Internet, but all my local area is working well. If I'm trying to go on the WebGUI is it working only for the login and redirection to the Home, but if I'm trying to go on another page the system is very very very slow, and take around 2 or 3 minutes to show up the page. If I'm going directly after logging to the "Status" --> "Interface" page, and click on the "WAN" section on "DHCP Renew" button, and after this I click on Release, I'm going back to normal.

So first question, have you any idea why this is causing this kind of problem (interface down but still up in status) ?

The second question is, any idea to solve this problem ?

The third, Do you know how to automaticaly execute a script or something who give down and finally up the WAN interface to get back normal Internet access ?

Thanks in advance for your help, and to take the time to read my bad English (i'm sorry).

Sincerely,
Alex.

Alesk13Fr

Nobody can help me ?

chpalmer

The problem is my Box is using the same method for all 4 port, the box is on Bridge mode, so no router or DMZ is used, only direct connection via the Web, but the ISP is using a strange system, who use an internal DHCP Server ONLY for his TV Receiver, something like 192.169.0.X, and when the Box need to update or access to thte TV Receiver, my Pfsense who is plug directly to the Box in Static Public IP Address, is freezing.

So if I read correctly- Your ISP device is the cause of the problem, right?

On pfSense, you can bring up a "gateways" widget on the dashboard that should show when the gateway is down…

Alesk13Fr

Hi ChPalmer,

Thank you for your reply !

I'm not sure to understand what you said. I must use Gateway instead of Static IP Adress (Basic configuration like ATM) on this NetCard ?

Have-you a related page on WiKi or Forum somewhere ?

Thanks again for your help.

Best regards,
Alex.

chpalmer

Hi Alesk13Fr:

If its easier for you there are some other language forums lower down in the list…

Here is a screenshot of what I mean... Would this do what you ask? It changes when the gateway goes down.

dashboard.JPG_thumb

Alesk13Fr

Hi ChPalmer,

Thank you for your help, and to have take the time to do this screen shot.

I've tried to get some help from French Forum, but nobody is able to help me, this is why I've ask here ! Because I'm sure somebody have the clue !

Ok, I'll give a try with Gateway, I'm looking on the web to find some related pages !

Do you think, using 2 Gateway on the same ISP is resolving my problem ? Is a way to get a cron task to "renew" the WAN if is still down ?

Thanks again.

Best regards.
Alex.

chpalmer

Ok, I'll give a try with Gateway,

If you put that widget on you dashboard you should be able to see if a gateway goes down.

Do you think, using 2 Gateway on the same ISP is resolving my problem ?

Not if their box is locking up.

When this happens, does the WAN address of your pfSense box change?

CRON job would probably work but I have no experience with it.

Alesk13Fr

Ok, I'll give a try with Gateway,

If you put that widget on you dashboard you should be able to see if a gateway goes down.

I'm seeing already down, because all my Lan can't access the Web, I'm seeing on Seven the Internet access crossed-out, so I know I must log on PfSense terminal and type ifconfig rl0 down, and after, ifconfig rl0 up, all is back to normal with this, and the Internet access is fine.

Do you think, using 2 Gateway on the same ISP is resolving my problem ?

Not if their box is locking up.

Ok, I understand.

When this happens, does the WAN address of your pfSense box change?

No, the configuration haven't changed, still on the right Public address with the correct gateway and dns.

CRON job would probably work but I have no experience with it.

Ok, thanks !

Thanks again for your help.

Best regards,
Alex.

heper

the slow responding webgui can happen when pfsense "thinks" it is still online, but actually isn't. The slow responding is because pfsense is unable to do dns lookups.

-change your monitor ip to a public ip address, your isp's dns servers/google dns/….
-set some dns servers and make sure to set the appropriate gateway for them

if you lose connection, pfsense will notice and the webgui shouldn't be slow anymore

Alesk13Fr

Hi Heper,

Thank you for your reply, I'm sorry to reply only now, I was to the Hospital and I'm back at home for the moment.

I'm not sure to understand what you mean by :

@heper:

-change your monitor ip to a public ip address, your isp's dns servers/google dns/….

What's the "monitor ip" ? Where I can find it on PfSense ? I must setup gateway for my ISP if I'm right ? How to do it ? (Wiki somewhere ?)

Thanks again for your help.

Sincerely,
Alex.

stephenw10

The 'monitor IP' is the address that pfSense uses to know if a WAN connection is Up or Down.
See: http://doc.pfsense.org/index.php/Multi-WAN_2.0#Monitor_IP

Steve

Alesk13Fr

Hi stephenw10 ,

thank you for your reply.

I've understand and find (ty Google) how to change the monitor IP, in "Advanced" "Routing" !

Is it a way to have PfSense automatically trying to renew/release and so getting back the Gateway up automatically ? In fact I would like to have PfSense automatically do "renew/release" effect on the WAN Interface when my Monitor IP isn't accessible !

If somebody can help me …

Thanks in advance, and thanks again stephenw10 !

Sincerely,
Alex.