Can't get internett access with pfSense
-
My setup is Modem -> Router -> pfSense computer -> main computer
Is this wrong? -
and how is your pfsense getting a public IP if behind your router?
That setup is kind of pointless if you ask me, since pfsense is designed to be the edge firewall/router.
Are you just using your routers lan ports as a switch.. What are the make and model numbers of your modem and router?
So you computer is just directly connected to pfsense lan port? Doing auto crossover, crossover cable?
Don't you have any other computes/devices that you want to connect to the internet - how are they going to get to the internet with that sort of setup?
-
In my house we have an router to do the wifi stuff, but since my room is so far away from the router my internett is bad. So i wanted to use an old computer here up on my room to make my self an own internett. Thats were pfSense comes tyo good use. But i don't know witch LAN port i shud use to connect the pfSense computer to the internett.
So my modem is a thomson tcm 470, and my router ia an D-link dir-655. -
It would be better from a security and flexibility point of view to connect like this:
TCM470 -> WAN-pfSense-LAN- -> DIR-655 (running as a switch/AP only) -> client machien
However you may not be able to do that given the layout of your house. If you connect it like this:
TCM470 -> WAN-DIR655-LAN -> WAN-pfSense-LAN- -> client machine
Then you will be double NATing as Johnpoz pointed out. Some things may cause problems but mostly it should work fine.
You still haven't said what was bad about the connection when it worked? :-\
Steve
-
When the internet conection was bad i ment that if i was connecting to the router i vould have 10 ping and 22mb down but if i used the pfSense i had 21 ping and 11 mb down. But if i try the setup that you sudgested does i have to reinstall pfSense? I am also using those thing that takes your internet trough the powerline of the house so i can connect however you sudgest.
-
No you don't have to re-install pfSense. You don't even have to reconfigure it since it's using DHCP for WAN in both cases.
Those Ethernet over Powerline boxes can give trouble. I've seen both random disconnects and connection speed far less that advertised. You should try to setup a test with direct connections even if just temporarily. Have you been using them for some time are they also a new addition to your network?
Steve
-
Yes the boxes are new. But do you sudgest that i go down stair with the pfSense computer and try to connect it directly into the TCM 470? And the powerline boxes are new but seem to work great.
-
Yes, just as a test I would connect it directly without the powerline boxes. They may well work fine but when you change too many things at once you can never be sure what's causing problems.
Steve
-
"So i wanted to use an old computer here up on my room to make my self an own internett"
What?? Juts run a connection from your router is all you need - you don't need another router to add a client to your network.
You have NO need for pfsense to add a device to your network.
-
Yes, i know i don't realy need the extra pfSense computer for evryday use. But when i am hosting a LAN party the internet realy sucks because of the overload on the router.
-
You would be able to mitigate that to some extent using the traffic shaping features of pfSense but all the traffic will still be going through the router.
If that is your main purpose for using pfSense you will be much better off connecting it directly to the modem.Steve
-
So you think pfsense is going to make your internet faster? If your router can not handle the connections then replace it with the pfsense box sure - use your old router as just an AP for wireless then.
On a side note – what does a "LAN" party have to do with your router or the internet in the first place - all that is required for a LAN party is a switch ;)
-
Ha! Good point. ;)
I guess many games require a continuous internet connection these days even if the server is hosted locally.Steve
-
My setup is Modem -> Router -> pfSense computer -> main computer
Is this wrong?Switch it to:
(Modem) -> (pfSense) -> (WiFi Router) -> (rest of LAN)
The way you have it all your WiFi devices are skipping pfSense and going straight to the WiFi router and then out to the Internet. Put pfSense as the most "upstream" or perimeter device. So immediately downstream from the modem.