Testing new installation behind existing firewall
-
Hi forum,
I am trying to test some new hardware from inside the existing firewall before I put it into common use.
The CPU is an Intel NUC box with only one network interface (em0). The switch is a D-Link DGS-1210-28 configured with two vlans: vid 100 for LAN traffic on ports 1-22, vid 800 for the WAN traffic on port 23. The NUC is connected to port 24.
I use pfSense 2.1 snapshots. Several configurations have been tried. For the moment, I have the same two vlans: em0_vlan100 assigned to LAN, em0_vlan800 assigned to WAN. I have configured the LAN with a fixed IP address of 192.168.1.6 and with DHCP enabled. On the WAN side, I have used one of the free external IP addresses (xxx.yyy.58.235/29) and use xxx.yyy.58.233 for the gateway address.
I can communicate with the new install, but it seems to have no internet access. So I wonder if I should do something on the existing firewall. The existing firewall has a fixed LAN address (192.168.1.5) and DHCP enabled. WAN is configured with one of the other external IP addresses in our pool (xxx.yyy.58.234/29) and the gateway set to xxx.yyy.58.233.
From the new installation I cannot ping any external hosts, and I cannot obtain information on new updates. I can ping local addresses.
Regards,
Jon