Not able to access internet using pppoe configuration



  • Hi, I have pppoe type internet connection. I have set up pfsense on vmware workstation. I have put username/password in the WAN interface page and proper interface is also assigned as shown in one of the screenshots. I can see WAN is up in the pfsense dashboard but when I try to access the internet through chrome browser it displays 105 error: something related to DNS. I have also attached the other related screenshots which might help resolve the issue.

    Thanks.  












  • Netgate Administrator

    Your WAN interface is still set as em0, is should be pppoe0.

    Steve



  • @stephenw10:

    Your WAN interface is still set as em0, is should be pppoe0.

    When I keep WAN pppoe0, it shows "WAN is disabled" with red cross in the dashboard instead of the green arrow when it is set to em0.

    Is there something else I may be missing?

    Thanks.


  • Netgate Administrator

    Go to Interfaces: (assign): PPPs:
    Is pppoe0 set to use em0 as its port?

    Have you spoofed the MAC on WAN deliberately?

    Steve



  • Yes. pppoe0 is set to use em0 as its port.

    And yes, the maC address has to be spoofed in order to match it to the original MAC registered with ISP.

    Is there any other info. I might provide here to narrow down the issue?

    Thanks.


  • Netgate Administrator

    The contents of your PPP logs would probably say something.
    It's such a long time since I set up my own PPPoE connections I'm having trouble remembering what order I did things in.  ::)

    Steve

    Edit: typo



  • Okay. I have searched almost entire forum to find if others have been through this issue but could not find any similar issue. What according to you, Steve, should be my next move? What else do I need to look at? I have already posted the screenshot of PPP logs, does it say something? Does it help pinpoint the problem?

    Thanks.



  • Okay. Now the WAN is showing green up arrow suggesting it to be online. However, I am not able to open any website nor am I able to ping it. Here is the most recent system log:

    Apr 28 11:39:06	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:30:59	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:26:55	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:24:51	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:23:49	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:23:47	ntp: Giving up on time sync after 3 attempts.
    Apr 28 11:23:41	ntpdate[11829]: no servers can be used, exiting
    Apr 28 11:23:41	ntpdate[11829]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:23:35	ntpdate[11169]: no servers can be used, exiting
    Apr 28 11:23:35	ntpdate[11169]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:23:32	radiusd[10576]: The server is not configured to listen on any ports. Cannot start.
    Apr 28 11:23:32	radiusd[10576]: The server is not configured to listen on any ports. Cannot start.
    Apr 28 11:23:32	radiusd[10269]: Loaded virtual server <default>Apr 28 11:23:31	php: : Restarting/Starting all packages.
    Apr 28 11:23:29	ntpdate[4887]: no servers can be used, exiting
    Apr 28 11:23:29	ntpdate[4887]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:23:28	ntpd_intres[6776]: ntpd exiting on signal 15
    Apr 28 11:23:28	check_reload_status: Starting packages
    Apr 28 11:23:28	php: : pfSense package system has detected an ip change -> ... Restarting packages.
    Apr 28 11:23:28	check_reload_status: Reloading filter
    Apr 28 11:23:27	check_reload_status: Syncing firewall
    Apr 28 11:23:27	php: /interfaces_assign.php: Creating rrd update script
    Apr 28 11:23:27	check_reload_status: updating dyndns wan
    Apr 28 11:23:27	dhcpd: For info, please visit https://www.isc.org/software/dhcp/
    Apr 28 11:23:27	dhcpd: All rights reserved.
    Apr 28 11:23:27	dhcpd: Copyright 2004-2012 Internet Systems Consortium.
    Apr 28 11:23:27	dhcpd: Internet Systems Consortium DHCP Server 4.2.4-P1
    Apr 28 11:23:26	ntpd_intres[6776]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:23:25	dnsmasq[42472]: read /etc/hosts - 2 addresses
    Apr 28 11:23:25	dnsmasq[42472]: ignoring nameserver 127.0.0.1 - local interface
    Apr 28 11:23:25	dnsmasq[42472]: ignoring nameserver 127.0.0.1 - local interface
    Apr 28 11:23:25	dnsmasq[42472]: reading /etc/resolv.conf
    Apr 28 11:23:25	dnsmasq[42472]: compile time options: IPv6 GNU-getopt no-DBus i18n IDN DHCP DHCPv6 no-Lua TFTP no-conntrack
    Apr 28 11:23:25	dnsmasq[42472]: started, version 2.63 cachesize 10000
    Apr 28 11:23:24	dnsmasq[25320]: exiting on receipt of SIGTERM
    Apr 28 11:23:22	check_reload_status: Rewriting resolv.conf
    Apr 28 11:23:13	php: /index.php: Successful webConfigurator login for user 'admin' from 192.168.1.151
    Apr 28 11:23:13	php: /index.php: Successful webConfigurator login for user 'admin' from 192.168.1.151
    Apr 28 11:22:35	ntpd_intres[6776]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:22:33	ntp: Giving up on time sync after 3 attempts.
    Apr 28 11:22:28	ntpdate[5597]: no servers can be used, exiting
    Apr 28 11:22:28	ntpdate[5597]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:22:24	check_reload_status: Reloading filter
    Apr 28 11:22:22	php: : IPSEC: One or more IPsec tunnel endpoints has changed its IP. Refreshing.
    Apr 28 11:22:22	ntpdate[61922]: no servers can be used, exiting
    Apr 28 11:22:22	ntpdate[61922]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:22:21	radiusd[52995]: The server is not configured to listen on any ports. Cannot start.
    Apr 28 11:22:21	radiusd[52995]: The server is not configured to listen on any ports. Cannot start.
    Apr 28 11:22:21	radiusd[42741]: Loaded virtual server <default>Apr 28 11:22:21	sshlockout[44936]: sshlockout/webConfigurator v3.0 starting up
    Apr 28 11:22:21	login: login on ttyv0 as root
    Apr 28 11:22:20	php: : Restarting/Starting all packages.
    Apr 28 11:22:20	php: : Creating rrd update script
    Apr 28 11:22:17	check_reload_status: Restarting ipsec tunnels
    Apr 28 11:22:16	ntpdate[28447]: no servers can be used, exiting
    Apr 28 11:22:16	ntpdate[28447]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:22:15	dnsmasq[25320]: read /etc/hosts - 2 addresses
    Apr 28 11:22:15	dnsmasq[25320]: ignoring nameserver 127.0.0.1 - local interface
    Apr 28 11:22:15	dnsmasq[25320]: ignoring nameserver 127.0.0.1 - local interface
    Apr 28 11:22:15	dnsmasq[25320]: reading /etc/resolv.conf
    Apr 28 11:22:15	dnsmasq[25320]: compile time options: IPv6 GNU-getopt no-DBus i18n IDN DHCP DHCPv6 no-Lua TFTP no-conntrack
    Apr 28 11:22:15	dnsmasq[25320]: started, version 2.63 cachesize 10000
    Apr 28 11:22:15	check_reload_status: Updating all dyndns
    Apr 28 11:22:15	dhcpd: For info, please visit https://www.isc.org/software/dhcp/
    Apr 28 11:22:15	dhcpd: All rights reserved.
    Apr 28 11:22:15	dhcpd: Copyright 2004-2012 Internet Systems Consortium.
    Apr 28 11:22:15	dhcpd: Internet Systems Consortium DHCP Server 4.2.4-P1
    Apr 28 11:22:12	apinger: No usable targets found, exiting
    Apr 28 11:22:12	apinger: Starting Alarm Pinger, apinger(13324)
    Apr 28 11:22:11	kernel: pflog0: promiscuous mode enabled
    Apr 28 11:22:11	kernel: ad0: FAILURE - SETFEATURES 0x85 status=41 <ready,error>error=4 <aborted>Apr 28 11:22:11	kernel: Trying to mount root from ufs:/dev/ad0s1a
    Apr 28 11:22:11	kernel: uhub1: 6 ports with 6 removable, self powered
    Apr 28 11:22:11	kernel: uhub0: 2 ports with 2 removable, self powered
    Apr 28 11:22:11	kernel: acd0: CDROM <vmware virtual="" ide="" cdrom="" drive="" 00000001="">at ata1-master UDMA33
    Apr 28 11:22:11	kernel: ad0: 4096MB <vmware virtual="" ide="" hard="" drive="" 00000001="">at ata0-master UDMA33
    Apr 28 11:22:11	kernel: uhub1: <(0x15ad) EHCI root HUB, class 9/0, rev 2.00/1.00, addr 1> on usbus1
    Apr 28 11:22:11	kernel: ugen1.1: <(0x15ad)> at usbus1
    Apr 28 11:22:11	kernel: uhub0: <intel 1="" 9="" uhci="" root="" hub,="" class="" 0,="" rev="" 1.00="" 1.00,="" addr="">on usbus0
    Apr 28 11:22:11	kernel: ugen0.1: <intel>at usbus0
    Apr 28 11:22:11	kernel: usbus1: 480Mbps High Speed USB v2.0
    Apr 28 11:22:11	kernel: usbus0: 12Mbps Full Speed USB v1.0
    Apr 28 11:22:11	kernel: IPsec: Initialized Security Association Processing.
    Apr 28 11:22:11	kernel: Timecounters tick every 10.000 msec
    Apr 28 11:22:11	kernel: Timecounter "TSC" frequency 1615018081 Hz quality 800
    Apr 28 11:22:11	kernel: acpi_throttle0: <acpi cpu="" throttling="">on cpu0
    Apr 28 11:22:11	kernel: vga0: <generic isa="" vga="">at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
    Apr 28 11:22:11	kernel: sc0: VGA <16 virtual consoles, flags=0x300>
    Apr 28 11:22:11	kernel: sc0: <system console="">at flags 0x100 on isa0
    Apr 28 11:22:11	kernel: orm0: <isa option="" roms="">at iomem 0xc0000-0xc7fff,0xc8000-0xc8fff,0xc9000-0xc9fff,0xdc000-0xdffff,0xe0000-0xe3fff pnpid ORM0000 on isa0
    Apr 28 11:22:11	kernel: pmtimer0 on isa0
    Apr 28 11:22:11	kernel: fd0: <1440-KB 3.5" drive> on fdc0 drive 0
    Apr 28 11:22:11	kernel: fdc0: [FILTER]
    Apr 28 11:22:11	kernel: fdc0: <floppy drive="" controller="">port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on acpi0
    Apr 28 11:22:11	kernel: uart1: [FILTER]
    Apr 28 11:22:11	kernel: uart1: <16550 or compatible> port 0x2f8-0x2ff irq 3 on acpi0
    Apr 28 11:22:11	kernel: uart0: [FILTER]
    Apr 28 11:22:11	kernel: uart0: <16550 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0
    Apr 28 11:22:11	kernel: ppi0: <parallel i="" o="">on ppbus0
    Apr 28 11:22:11	kernel: lpt0: Interrupt-driven port</parallel></floppy></isa></system></generic></acpi></intel></intel></vmware></vmware></aborted></ready,error></default></default> 
    

    I have also attached the ping screenshot, WAN status in the dashboard etc.

    Let's hope it is of some help.

    Thanks








  • @vickikumar:

    Apr 28 11:39:06	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:30:59	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:26:55	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:24:51	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:23:49	ntpd_intres[19053]: host name not found: 0.pfsense.pool.ntp.org
    Apr 28 11:23:47	ntp: Giving up on time sync after 3 attempts.
    Apr 28 11:23:41	ntpdate[11829]: no servers can be used, exiting
    Apr 28 11:23:41	ntpdate[11829]: can't find host 0.pfsense.pool.ntp.org
    Apr 28 11:23:35	ntpdate[11169]: no servers can be used, exiting
    Apr 28 11:23:35	ntpdate[11169]: can't find host 0.pfsense.pool.ntp.org
    
    

    The can't find host means you have a DNS problem. The similar report from ping means you have a DNS problem. What have you configured for DNS?

    Pinging your IP addresses (WAN IP address) doesn't usually reveal anything significant. I suggest you try 172.31.29.1 (or whatver is at the other end of your PPP link at the time) and 8.8.8.8 (Google DNS server).


  • Netgate Administrator

    The PPP log will be much more useful that the system log here. It's separated to it's own tab in the log page on the webgui.
    Like Wallabybob says it appears your DNS setup is not correct. You should be receiving DNS server information via the PPP connection, the logs should show that.
    Have you set any DNS servers manaully in System: General Setup:? Have you unchecked the box 'Allow DNS server list to be overridden by DHCP/PPP on WAN' ?

    Steve



  • @wallabybob:

    The can't find host means you have a DNS problem. The similar report from ping means you have a DNS problem. What have you configured for DNS?

    Yes, you are correct. There is some issue with DNS configuration. The screenshot shows how it is configured. I have not put any DNS servers because they are not provided to me by my ISP.

    @wallabybob:

    I suggest you try 172.31.29.1 (or whatver is at the other end of your PPP link at the time) and 8.8.8.8 (Google DNS server).

    In another two screenshots, the address 172.31.29.1 is showing as Gateway. Does it need to be put in DNS server in System->General Setup manually?

    @stephenw10:

    The PPP log will be much more useful that the system log here.

    Here is the most recent PPP log:

    Apr 29 11:40:51	ppp: [wan] IFACE: Rename interface ng0 to pppoe0
    Apr 29 11:40:51	ppp: [wan] IFACE: Up event
    Apr 29 11:40:51	ppp: [wan] 180.148.60.99 -> 172.31.29.1
    Apr 29 11:40:51	ppp: [wan] IPCP: LayerUp
    Apr 29 11:40:51	ppp: [wan] IPCP: state change Ack-Sent --> Opened
    Apr 29 11:40:51	ppp: [wan] IPADDR 180.148.60.99
    Apr 29 11:40:51	ppp: [wan] IPCP: rec'd Configure Ack #3 (Ack-Sent)
    Apr 29 11:40:51	ppp: [wan] IPADDR 180.148.60.99
    Apr 29 11:40:51	ppp: [wan] IPCP: SendConfigReq #2
    Apr 29 11:40:51	ppp: [wan_link0] rec'd unexpected protocol MPLS Control Protocol (RFC 3032), rejecting
    Apr 29 11:40:51	ppp: [wan] IPCP: state change Req-Sent --> Ack-Sent
    Apr 29 11:40:51	ppp: [wan] IPADDR 172.31.29.1
    Apr 29 11:40:51	ppp: [wan] IPCP: SendConfigAck #1
    Apr 29 11:40:51	ppp: [wan] 172.31.29.1 is OK
    Apr 29 11:40:51	ppp: [wan] IPADDR 172.31.29.1
    Apr 29 11:40:51	ppp: [wan] IPCP: rec'd Configure Request #1 (Req-Sent)
    Apr 29 11:40:51	ppp: [wan] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
    Apr 29 11:40:51	ppp: [wan] IPADDR 0.0.0.0
    Apr 29 11:40:51	ppp: [wan] IPCP: SendConfigReq #1
    Apr 29 11:40:51	ppp: [wan] IPCP: state change Starting --> Req-Sent
    Apr 29 11:40:51	ppp: [wan] IPCP: Up event
    Apr 29 11:40:51	ppp: [wan] IPCP: LayerStart
    Apr 29 11:40:51	ppp: [wan] IPCP: state change Initial --> Starting
    Apr 29 11:40:51	ppp: [wan] IPCP: Open event
    Apr 29 11:40:51	ppp: [wan] Bundle: Status update: up 1 link, total bandwidth 64000 bps
    Apr 29 11:40:51	ppp: [wan_link0] Link: Join bundle "wan"
    Apr 29 11:40:51	ppp: [wan_link0] Link: Matched action 'bundle "wan" ""'
    Apr 29 11:40:51	ppp: [wan_link0] LCP: authorization successful
    Apr 29 11:40:51	ppp: [wan_link0] MESG: Welcome.
    Apr 29 11:40:51	ppp: [wan_link0] CHAP: rec'd SUCCESS #1 len: 12
    Apr 29 11:40:51	ppp: [wan_link0] CHAP: sending RESPONSE #1 len: 34
    Apr 29 11:40:51	ppp: [wan_link0] CHAP: Using authname "cafechokolade"
    Apr 29 11:40:51	ppp: [wan_link0] Name: "FiveNet"
    Apr 29 11:40:51	ppp: [wan_link0] CHAP: rec'd CHALLENGE #1 len: 28
    Apr 29 11:40:51	ppp: [wan_link0] LCP: LayerUp
    Apr 29 11:40:51	ppp: [wan_link0] LCP: auth: peer wants CHAP, I want nothing
    Apr 29 11:40:51	ppp: [wan_link0] LCP: state change Ack-Sent --> Opened
    Apr 29 11:40:51	ppp: [wan_link0] MAGICNUM 4a24e56c
    Apr 29 11:40:51	ppp: [wan_link0] MRU 1492
    Apr 29 11:40:51	ppp: [wan_link0] LCP: rec'd Configure Ack #2 (Ack-Sent)
    Apr 29 11:40:51	ppp: [wan_link0] MAGICNUM 4a24e56c
    Apr 29 11:40:51	ppp: [wan_link0] MRU 1492
    Apr 29 11:40:51	ppp: [wan_link0] LCP: SendConfigReq #2
    Apr 29 11:40:51	ppp: [wan_link0] PROTOCOMP
    Apr 29 11:40:51	ppp: [wan_link0] LCP: rec'd Configure Reject #1 (Ack-Sent)
    Apr 29 11:40:51	ppp: [wan_link0] LCP: state change Req-Sent --> Ack-Sent
    Apr 29 11:40:51	ppp: [wan_link0] MAGICNUM 1a3c7e17
    Apr 29 11:40:51	ppp: [wan_link0] MRU 1492
    Apr 29 11:40:51	ppp: [wan_link0] AUTHPROTO CHAP MD5
    Apr 29 11:40:51	ppp: [wan_link0] LCP: SendConfigAck #1
    Apr 29 11:40:51	ppp: [wan_link0] MAGICNUM 1a3c7e17
    Apr 29 11:40:51	ppp: [wan_link0] MRU 1492
    Apr 29 11:40:51	ppp: [wan_link0] AUTHPROTO CHAP MD5
    Apr 29 11:40:51	ppp: [wan_link0] LCP: rec'd Configure Request #1 (Req-Sent)
    Apr 29 11:40:51	ppp: [wan_link0] MAGICNUM 4a24e56c
    Apr 29 11:40:51	ppp: [wan_link0] MRU 1492
    Apr 29 11:40:51	ppp: [wan_link0] PROTOCOMP
    Apr 29 11:40:51	ppp: [wan_link0] LCP: SendConfigReq #1
    Apr 29 11:40:51	ppp: [wan_link0] LCP: state change Starting --> Req-Sent
    Apr 29 11:40:51	ppp: [wan_link0] LCP: Up event
    

    Also, why is the MAC 00:00:00:00:00:00 as shown in the interface-setup screenshot despite it being spoofed in the WAN configuration?

    Hope it helps.

    Thanks







  • Netgate Administrator

    Hmm, OK. Well as you say your DNS setup is not right, the dashboard shows only 127.0.0.1 which isn't going to help much. You should be receiving DNS infomation with the ppp login but that doesn't seem to be happening.

    I wallabybob was suggesting you try to ping the gateway address and 8.8.8.8 (Google's public DNS).

    If you can then you could just use Google for DNS or you could find out your ISPs DNS servers and enter them manually.

    You appear to have two gateways but only one WAN connection. Have you entered a gateway manually?
    You should remove the non-fucntional gateway in System: Routing: If it is set as the default then that could cause problems, you will have to set the other gateway to default first.

    Steve



  • I deleted the non-functional gateway as suggested by you. I don't remember why and when I created a second gateway.

    @stephenw10:

    You should be receiving DNS infomation with the ppp login but that doesn't seem to be happening.

    Yes, you are correct. I usually don't get to put any DNS information when using PPP connection. But it seems pfSense is not able to acquire DNS from ISP automatically. What could be the issue?

    @stephenw10:

    I wallabybob was suggesting you try to ping the gateway address and 8.8.8.8 (Google's public DNS).

    Yes, I just did it the way you suggested and put in DNS manually it got up and running. But one question remains, why do I need to put DNS manually?

    Thanks.


  • Netgate Administrator

    What version of pfSense are you running?
    2.0.2 had a PPP bug that presented exactly as you are seeing. 2.0.3 has fixed this.

    Steve



  • Yes, it was the version issue. Now it is able to acquire DNS automatically. But I am not able get one thing: the MAC address is not being spoofed. Since I am using Vmware I have no choice but to put the MAC in the vmware configuration file. Is this also the issue with the current pfsense version?

    Thanks any for the solution.


  • Netgate Administrator

    I have never had to do this but I know other people have.
    In order to spoof the MAC on a PPPoE connection you have to do the spoofing on the underlying ethernet interface, em0, in your case. However normally em0 is not assigned in a setup such as yours which presents a problem. To work around this create a new interface and assign em0 to it. Set it up as type 'none' and spoof the MAC there.

    Steve


Log in to reply