Cant access internet through pfsense. im new to this



  • hi
      i have a basic cable connection cable modem -> wan pfsense -> lan-> pc.  i installed it on a pc  i can log into pfsense from the lan port on the pc(win764)  status in pfsense it shows both ports up,  i can ping from diag in pfsense the dns server  but i cant ping my lan pc,  i tried static and dhcp on the lan port, neither work.    all i did in setup was set both ports then log into pfsense .  if i change the wan to lan and vice versa,  i still can only ping through the wan so i dont think its the nic.  is there a setting i or something im missing?    thanks for your help.    btw  im new to this and this is just for a home setup



  • Thanks for trying to use pfsense. First, we are going to need more information. Is the PC setup for DHCP or a static address. The LAN on pfsense should always be static and is used as the gateway for statically assigned IPs and also for DHCP. You are also going to be using the DHCP service on pfsense to hand out IPs to the LAN, so you will need to go set that up as well.
    DHCP service is on by default on a new install unless you elected to turn it off. Have you made any other changes?



  • thankyou for the quick reply
        i had the lan nic in pfsense set up for no dhcp, 192.168.1.1/255.255.255.0 and i had my pc set up as 192.168.1.50/255.255.255.0/192.168.1.1 as the default gateway.  the wan is set up as dhcp and recieves the ip from i guess the cable company. i can access from the pc typing 192.168.1.1 in the address bar the pfsense settings/dashboard after entering the default name n password through the lan port.



  • Are you getting a live IP address or a private one. If you are getting a private IP … head over to your WAN configuration and disable the block on private addresses and see if that helps.



  • on the wan port i am getting a 82.74.xx.xxx which shows in the pfsense dashboard,  i am able to ping cablevisions dns server and any other dns server that is listed in the dashboard under dns servers  100% on the wan



  • i reset to factory default. now what do i do?    lan is dhcp and wan is dhcp too.  is there anything  else to set?  thanks  joey



  • 1. Your cable modem is also a router and is giving your wan a private address.  If you can I would put the modem in bridge mode.

    2. Your cable modem is handing your pfsense wan port an address that is in the same subnet as your lan port. This will not work.

    If you cant put your modem in bridge mode then change your lan address to another address in the private range.



  • i dont believe the modem is a router as the cable company gave me a netgear wireless router to use , i would like to replace the netgear with pfsense. 
      when you say subnet do you mean the 255.255.255.0? this appears on the wan nic(dhcp) and on the lan nic(static)although the ip address on the wan(79.82.xxx.xx) is way different from the lan(192.168.1.1-pfsense, 192.168.1.51-pc)  what do i change the lan nic to ? and what is my lan ip range ?  thanks  joey



  • Sounds like the modem is already in bridge mode. This is fine since WAN is getting an ip in the internet range.

    The LAN subnet looks to be 192.168.1.1-254 or 192.168.1.0/24 (255.255.255.0).
    You can change the LAN nic to what ever you want, so long as it is in the private range of IPs (google private ip ranges or wikipedia it).

    If you already have something on you network with that range, I encourage you to change it to avoid problems. If you do not that is fine.

    DHCP, which should be on by default, should be on an configured with a range like 192.168.100-250. The default gateway and DNS server is 192.168.1.1 for all those that are statically assigned. Don't forget to go to setup -> general and setup your DNS (or at least verify it).

    Once you have all that setup, from 192.168.1.51-pc … trace route to 8.8.8.8 to see how far you are getting before you fail.



  • what dns server should i use in the setup screen of pfsense, i use 8.8.8.8, 4.2.2.2.  in the pfsense dashboard it has 5 dns servers listed along with 8.8.8.8  and 4.2.2.2  is there any other blanks i should fill in?  like hostname?



  • Filling in the hostname is not a bad idea.
    You might want to uncheck this option: Allow DNS server list to be overridden by DHCP/PPP on WAN

    Did you try a trace route from your PC?



  • it works now .  im going through pfsense,  thankyou so much.  i guess it was the dns servers i was using? cablevisions ? what are the fastest secure dns servers?  is google the fastest? i just went through the setup fully  (i never did that b4 just xed out of it and manually entered info)    now i cant wait to see the power of this.    WOW  joey



  • I use:
    8.8.8.8
    8.8.4.4
    4.2.2.2
    4.2.2.1
    2001:4860:4860::8888 (IPv6 FWs)
    2001:4860:4860::8844 (IPv6 FWs)

    Or a combination of them.



  • @joeyb:

    i dont believe the modem is a router as the cable company gave me a netgear wireless router to use , i would like to replace the netgear with pfsense.   
      when you say subnet do you mean the 255.255.255.0? this appears on the wan nic(dhcp) and on the lan nic(static)although the ip address on the wan(79.82.xxx.xx) is way different from the lan(192.168.1.1-pfsense, 192.168.1.51-pc)   what do i change the lan nic to ? and what is my lan ip range ?   thanks   joey

    I just reread your post and Im not sure where I got that idea…  ::)    Im gonna go check my glasses now.  ???

    Remember when changing devices directly up against a cable modem to reboot the cable modem.  That gets allot of people...


Locked