Routing between two local subnets
-
Im having issues and I really could do with some urgent direction if you have the time I would be very greatful.
We have a PFSense installation with multiple NICS;
-
192.168.1.0/24 - LAN
-
192.168.2.0/24 - WIFI
-
192.168.3.0/24 - Another
We need to add another interface to the installation (the card is in) and an uplink is in place to another switch where new equipment resides. (installed but a 3rd party, they will not change their IP addressing to match our existing network). So with the card fitted it looks like this;
-
192.168.1.0/24 - LAN
-
192.168.2.0/24 - WIFI
-
192.168.3.0/24 - Another
-
10.61.88.0/23 - Another
In their installation they have fitted a Draytek Router, with WAN uplink.
DHCP is enabled on their LAN side. Which is dishing out 10.61.89.0/23 addresses with a gateway of 10.61.88.1-
10.61.88.22/23 - Device 1
-
10.61.88.26/23 - Device 2
-
10.61.88.28/23 - Device 3
Here is what I have attempted; But I can only ping devices on the 10.61.88 network from the PFSense router and not from our 192.168.1 LAN. A rule is in place to pass the traffic.
-
Create new Interace in PFSense, and allocated a static 10.61.88.2/23 address, with gateway set to 10.61.88.1
-
Created LAN rule to allow traffic from 192.168.1 to the above subnet
-
With this in place I can ping the 10.61.88.2 interface in the PFSense router, but no devices on the other side from my 192.168.1 network
I'm doing something wrong somewhere? Please help!!
-
-
First, you probably want to enable the rule to bypass the rules if on the same interface. It also sounds like to you need to create a rule on the OPT interface to allow traffic. You can initiate traffic from the 192 network to the 10 network and it works because of states. You have to create rule for the traffic generated on the 10 subnet.
-
Mmmm is the new inteface on your pfSense wired directly to the other subnet? Or does it go through their Drytek router?