Need internet connection to LAN interface

stlsaint

Im hoping i am posting this in the right location as i am not sure what is blocking my connection.

Current setup:

Pfsense box with WAN and LAN interface.
LAN set as DHCP server with 192.168.1.1 IP.
LAN connects to a switch which i will configure with VLANS as well as VLANS on pfsense box.

My issue is i cannot get internet through to my LAN to the switch where my host are. Not sure what the overall issue is. Is there some default rules blocking net connection?

Network is: Modem > Pfsense > Switch

Cry Havok

You need to forward the required ports.

stlsaint

Thank you for the response but I was unable to solve the issue. If i understand correctly you are saying i needed to forward my ports, (http,https,etc) to my LAN from my WAN?

I believe i attempted to do so but to know avail. I added them to my NAT table as shown in attachment but still nothing. I started adding to my Firewall rules also and started seeing ping responses such as "Time to Live timeout" then more configuring with nothing. Spent well over 5 hours sitting here trying to understand the configuration. I followed your link to a "T" time and time again. (http://doc.pfsense.org/index.php/How_can_I_forward_ports_with_pfSense%3F) Still nothing.

Excuse my ignorance but this is my first time trying to setup such a firewall/network. A better explanation of what I am exactly to do to get internet routed to my LAN and into the switch or better yet some screenshots of what these rules/NAT are suppose to look like would be beyond greatly appreciated!


Cry Havok

WAN to LAN if, as you're post said, you're trying to reach a device on your network (LAN) from outside (WAN).

stlsaint

Sorry if my OP was misleading but im not trying to reach a device on my LAN. Im trying to get a net connection through my LAN. I have my modem going into WAN pulling a IP and connection to internet. I now need that net connection pushed to my LAN interface so i can plug into a switch which will handle all my VLANS and other devices, (laptops, games, wireless, etc). My problem is getting that net connection pushed through LAN.

Cry Havok

Ah.

The first question is, do devices connected directly to the LAN interface (or via a standard switch - no VLANs etc) have Internet access?

If so then you just have to ensure that pfSense knows about the internal IP ranges. You'll just have to configure routes for each LAN side subnet.

stlsaint

The first question is, do devices connected directly to the LAN interface (or via a standard switch - no VLANs etc) have Internet access?

No they do not and this is my overall issue at hand. If i plug LAN interface directly into my computer i get nothing for internet access. I have it (LAN) configured for DHCP so when i plug it into a switch then go from switch to computer i get a IP but still no net access.

Cry Havok

Then you need to start basic troubleshooting from the beginning.

Start with the following:

1. How does your pfSense server connect to the modem?
2. What is the make and model of the modem (so we can tell if it's a modem or a router)?
3. Does the pfSense server receive a WAN IP from the modem?
4. If you connect a switch to the LAN interface of the pfSense server, and then a PC to the switch, can you access the pfSense web interface?

Generally connecting one PC directly to another will only work if either you're using a cross-over cable, or if at least one of the computers supports auto-detection.

stlsaint

 1\. How does your pfSense server connect to the modem?

Pfsense server connects to modem directly via ethernet cable. Pulls the public IP of modem. In web interface i can use the ping utility to reach internet.

 2\. What is the make and model of the modem (so we can tell if it's a modem or a router)?

It is a straight modem. They gave me a modem/router at first and i returned it for just a modem.

 3\. Does the pfSense server receive a WAN IP from the modem?

Yes as described above.

 4\. If you connect a switch to the LAN interface of the pfSense server, and then a PC to the switch, can you access the pfSense web interface?

Yes i can. This is how i currently manage the web interface. Modem goes to WAN interface. LAN goes to Switch port 1. PC plugs into switch port 2 and i am able to access web interface via 192.168.1.1.

In all honesty i don't know what else to troubleshoot.

Generally connecting one PC directly to another will only work if either you're using a cross-over cable, or if at least one of the computers supports auto-detection.

Cry Havok

You can see the web interface, yet the PCs can't connect to the Internet?

What is the WAN IP (first 2 sets of numbers will do) shown for the pfSense WAN interface?

What is the netmask and default gateway shown by ipconfig/all from a command prompt on a Windows host?

stlsaint

WAN IP is 24.162.x.x

Yep I plugged in a new computer to switch for first time and it pulled IP from dhcp pool and I got to web interface via LAN IP 192.168.1.1.  Net mask shows 255.255.255.0 and GW shows 192.168.1.1.

My DNS servers that I set for wan also show up under LAN on ipconfig.

stlsaint

I have tried re-installing pfsense again with still no success on getting net connection to LAN. Is there something more i should be checking here or should i chalk this up as a loss for me wanting to use pfsense?

wallabybob

Please describe in more detail what you mean by "I get nothing for internet access". I suggest you complete the sentence

When I do … on a computer connected to the LAN interface of pfSense I expect to see ... but instead I see ...

Please the output of the command

tracert 8.8.8.8

(Windows command prompt) or

traceroute 8.8.8.8

(Linux/Unix/*BSD) which should show the systems between your system and 8.8.8.8 (a Google name server). Mask the last two octets of your WAN IP address if you wish but please leave the other IP addresses intact.

stlsaint

The op hopefully explains the situation. I get no internet access via my LAN interface
LAN serves as a dhcp server just fine though. The trace route requested returns nothing except

 tracing route to 8.8.8.8 over a maximum of 30 hops

1 *  *  *  request timed out.
2 *  *  *  request time out.
[\code]

This goes on up until 30.
Again the setup is modem to pfsense WAN. Pfsense LAN to switch. Computer from switch and I am unable to reach internet from computer.

stlsaint

So good news/bad news. Good news is i no have internet pushing from LAN into my switch and i can connect devices to the switch for internet access now. Bad news is i dont know what i configured previously to not be able to do this before. At the pfsense console i choose the factory defaults option to start from scratch and i only enabled dhcp on LAN, plugged into switch and i was up and running. So i really dont know what i did to mess things up in the first place. Live and learn i guess. Thanks to posters for trying to help.