PPPoE basic setup for newbies



  • Hi,
    we're testing PPPoE and are a bit confused (newbies)

    (on 1.2 beta downloaded 070529 on a Parallels VM)

    We can make PPPoE connections OK, and they resolve DNS & can ping no internet traffic.

    I noticed that after connection the client has no subnet mask and can't work out how to make it have one.

    We are running it on the LAN interface- is that OK or do we need a separate interface?

    Settings from web config:
    interface: LAN
    subnet: 25
    users: 20
    server: 10.0.1.1
    remote: 10.0.0.1

    The LAN interface's own IP address is 192.168.1.224

    Do we need to do like this or can we/should we use a subnet on the LAN addresses for PPOE (eg 192.168.1.1/25)?

    Do we need to set up manual outbound or should "automatic" work?
    If manual, what?

    Sorry for so many questions- have spent some hours trolling archives for an answer.

    Thanks for any help.
    Cheers,
    Craig

    ps We have added one firewall rule to allow everthing on PPPoE.



  • outbound nat and pppoe client rules



  • Thanks Aldo.
    Can you be any more specific on the NAT rules?
    Here's a deal: once we get it working we'll make a step by step guide and link to it here and then this type of thread won't be repeated every couple of months for the years to come ;-)
    Cheers,
    Craig



  • advanced outbound nat enabled

    add rule to nat pppoe client subnet to wan (for any destination)
    add rule to nat lan and other interfaces to wan (for any destination)

    add rule to pppoe firewall rules to pass pppoesubnet to any
    add normal rules as well

    ensure the pppoe server ip is not in the pppoe client range.
    i normally do like this

    server address 192.168.1.126
    pppoe clients 192.168.1.128
    subnet 25

    be careful because you don't want your clients to use the 192.168.1.0 address if using a /24
    other than that it all works,

    are you using local auth or radius auth???



  • Hi Aldo,
    just local auth for now. Will get freeradius going once we get this sorted.
    The auth is no problem. Client gets an ip in the specified range the the server ip address as the gateway, but the clients are getting a blank entry for a subnet (even though a submet is entered in pfsense)- this seems a problem, otherwise won't all ips be treated as local and not go via the gateway?
    Thanks for your help
    Cheers,
    Craig



  • @craigdrown:

    Hi Aldo,
    just local auth for now. Will get freeradius going once we get this sorted.
    The auth is no problem. Client gets an ip in the specified range the the server ip address as the gateway, but the clients are getting a blank entry for a subnet (even though a submet is entered in pfsense)- this seems a problem, otherwise won't all ips be treated as local and not go via the gateway?
    Thanks for your help
    Cheers,
    Craig

    i dont really understand your question.

    netmask should be 255.255.255.255 on pppoe clients with gateway of pppoe server ip.


Log in to reply