PPPoE basic setup for newbies
-
Hi,
we're testing PPPoE and are a bit confused (newbies)(on 1.2 beta downloaded 070529 on a Parallels VM)
We can make PPPoE connections OK, and they resolve DNS & can ping no internet traffic.
I noticed that after connection the client has no subnet mask and can't work out how to make it have one.
We are running it on the LAN interface- is that OK or do we need a separate interface?
Settings from web config:
interface: LAN
subnet: 25
users: 20
server: 10.0.1.1
remote: 10.0.0.1The LAN interface's own IP address is 192.168.1.224
Do we need to do like this or can we/should we use a subnet on the LAN addresses for PPOE (eg 192.168.1.1/25)?
Do we need to set up manual outbound or should "automatic" work?
If manual, what?Sorry for so many questions- have spent some hours trolling archives for an answer.
Thanks for any help.
Cheers,
Craigps We have added one firewall rule to allow everthing on PPPoE.
-
outbound nat and pppoe client rules
-
Thanks Aldo.
Can you be any more specific on the NAT rules?
Here's a deal: once we get it working we'll make a step by step guide and link to it here and then this type of thread won't be repeated every couple of months for the years to come ;-)
Cheers,
Craig -
advanced outbound nat enabled
add rule to nat pppoe client subnet to wan (for any destination)
add rule to nat lan and other interfaces to wan (for any destination)add rule to pppoe firewall rules to pass pppoesubnet to any
add normal rules as wellensure the pppoe server ip is not in the pppoe client range.
i normally do like thisserver address 192.168.1.126
pppoe clients 192.168.1.128
subnet 25be careful because you don't want your clients to use the 192.168.1.0 address if using a /24
other than that it all works,are you using local auth or radius auth???
-
Hi Aldo,
just local auth for now. Will get freeradius going once we get this sorted.
The auth is no problem. Client gets an ip in the specified range the the server ip address as the gateway, but the clients are getting a blank entry for a subnet (even though a submet is entered in pfsense)- this seems a problem, otherwise won't all ips be treated as local and not go via the gateway?
Thanks for your help
Cheers,
Craig -
Hi Aldo,
just local auth for now. Will get freeradius going once we get this sorted.
The auth is no problem. Client gets an ip in the specified range the the server ip address as the gateway, but the clients are getting a blank entry for a subnet (even though a submet is entered in pfsense)- this seems a problem, otherwise won't all ips be treated as local and not go via the gateway?
Thanks for your help
Cheers,
Craigi dont really understand your question.
netmask should be 255.255.255.255 on pppoe clients with gateway of pppoe server ip.