Access wireless AP on the Lan side from internet
-
Hello,
Setup
Modem 82.73.xxx.xxx
router 192.168.11.1
Pfsense WAN 192.168.11.17
Pfsense Lan 192.168.1.1 - WLAN AP bridged static 192.168.1.2
In my router set DMZ: 192.168.11.17
Set web access to WLAN AP to 1000
Set firewall rules
I have managed to access the webgui of pfsense via web
Question:
What do i have to do to get access to my WLAN AP 192.168.1.2 via web
Thx
-
I suspect you will need to set a port forward in your modem to forward the selected TCP port to the web TCP port on the AP's IP address. You might also need to add a static route in the modem to access the AP subnetwork via gateway IP address of pfSense WAN IP address.
-
What should i fill in??
 -
Start with Firewall:NAT:Portforward and try again ;)
-
??
-
Navigate to port forward section in pfsense.
Go via path: Firewall -> NAT -> Port Forward and add new rule there -
What should i fill in??
| Destination Network=192.168.1.0 | | (The subnetwork number of your pfSense LAN interface and AP) |
| Subnet mask = | | (I don't know because you haven't given enough information, copy the network mask from pfSense LAN interface, probably 255.255.255.0) |
| Default Gateway = 192.168.11.17 | | (IP address of next hop to get to destination network) | -
it is not working
-
it is not working
If you are expecting me to respond to this report you will have to enhance it with considerably more information:
1. What did you do to the modem?
2. How did you test the changes to the modem?
3. What was reported in the test?
4. What did you expect to happen?
5. What evidence lead you to conclude "not working"? -
wallabybob,
you are right.
when i pm you the ip to access my router and my pfsensebox from the internet, are you willing to take a look at my setup and change what have to be changed.
i hope you will!!
and i will learn how to fix this.
thx
-
who wants to login and help me to fix this?
-
when i pm you the ip to access my router and my pfsensebox from the internet, are you willing to take a look at my setup and change what have to be changed.
i hope you will!!
and i will learn how to fix this.
Sorry for the delay. I have been working on another topic.
If you want to learn to fix it the best way would be to do it yourself.
In an earlier post I said the modem would need to have a port forward set up and probably a static route. You asked how to configure the static route but made no mention of the port forward. Have you configured the port forward and static route in the modem?
-
no need to say sorry!!!!!!!!!!!
Your right again
I will post screenshot later (i'm working at the moment)
Let's go do this the hard way ;D ;D ;D
-
"Set web access to WLAN AP to 1000"
What does this mean? You set the web ui of your AP to port 1000 vs 80??
So your behind a double nat – why people do this I have no idea. You have a modem (cable?) Why do you have a router in front of pfsense doing nat? Or do you have a gateway device that you can not put into bridge mode?
Anyhoo -- since you have your pfsense wan in the dmz of your first router, then all unsolicited traffic from the web to your public IP there 82.73.xxx.xxx should be forwarded to your pfsense wan inteface. So just forward whatever port your wlan ap web ui listens on in pfsense to its ip 192.168.1.2 and you should be good.
-
Ok here we go
Port forward to my pfsense (18474) and my wlan router on the lan port of pfsense (changed it to 20000)
-
Static route
-
Nat
-
automaticly wan rule
-
What?? That is from your router, thought you said the pfsense wan IP was in the DMZ..
"In my router set DMZ: 192.168.11.17"
There is no reason to forward anything then on your "router" Placement of the pfsense wan IP in the DMZ or "exposed host" as some routers call it means all UNSOLICITED traffic that ends up at your routers wan of that 82.x address that does not currently match up with a state on your router will be sent on to your pfsense wan IP, ie the 192.168.11.17
So You have to forward this traffic on your pfsense box to wlan AP – whatever port that might be.
-
i have dmz set to 192.168.11.17 i upload the wrong picture.
But i forgot to remove the port forward so i have both
who will please login an help me out.
I'm totaly lost now.
Why must i learn it the hard way :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'( :'(
