Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Problem getting to websites - via NAT Qwest modem

    General pfSense Questions
    2
    3
    949
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      root2020 last edited by

      I have a site-A and a site-B.
      Site-B working just fine with an openvpn server and it is using PPPoE to authenticate, the modem is in bridge mode.

      On the site-A, the pfsense box is in a DMZ via the DSL modem. That was the only thing I changed on the modem. The modem has a static IP on its WAN side and forwarding everything to a private IP on the pfsense WAN port. There is a VPN tunnel between the two and that is working 100%. The problem is that site-A web browsing stinks and pages timeout all of the time. Some web pages you just plain cannot reach. I have full firewall logging on and everything is going out free and clear. I believe the problem is due to the double NAT. Internet pipe is 7 megabit connection on site-A.

      What are my options? I notice on the qwest DSL that I can disable NAT and I can enable dynamic routing. What can I do to get this working by keeping the NAT on the modem?

      1. I know I can reconfigure and use PPPoE on pfsense and bridge the router. (I am scared to do this because last year I was using 2.0 RC2 on this box and it kept dropping the internet when using PPPoE. That is why I am even NATTED in the first place. I just upgraded it to 2.0.1 last night.
      2.
      3.

      1 Reply Last reply Reply Quote 0
      • C
        cmb last edited by

        Highly unlikely it's because of double NAT in itself. My first guess given it's DSL and with that description is you probably need MSS clamping to a lower value on the modem, it should have that configurable somewhere.

        1 Reply Last reply Reply Quote 0
        • R
          root2020 last edited by

          Thanks, I will look into that.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy