Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple lan subnets work with mono not with pfsense.

    Scheduled Pinned Locked Moved Routing and Multi WAN
    5 Posts 2 Posters 5.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Sylhouette
      last edited by

      hello i have the following situation

      
      wan -----pfsense-----cisco---192.168.0.1------switch----clients 192.168.0.0/24
                             |
                             |-----192.168.1.0/24
                             |
                             |------192.168.2.0/24
      
      

      i placed in monowall static routes to the 192.168.1.0/24 and 192.168.2.0/24 network.
      Those two networks are conected through the cisco

      All is working fine on monowall

      i have replaced the monowall box with pfsence 1.2rc3.
      The local lan 192.168.0.0/24 all can go to the internet.
      the clients on the 192.168.1.0/24 and the the clients on 192.168.2.0/24 network dont get on the internet.
      With traceroute they reach the pfsense box but there it stops.

      Am i missing something, not needed in monowall but needs to be set in pfsense.
      I also try'ed using the advandsed option to disable the whole firewall but still no go

      Thanks for your time.
      regards,
      Johan

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        activate Advanced Outbound NAT and create a rule for every subnet other than LAN you want NATed to WAN.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • S
          Sylhouette
          last edited by

          Thank you very much.
          One more question,
          Wich NAT do i need

          Automatic outbound NAT rule generation (IPSEC passthrough) or:
          Manual Outbound NAT rule generation (Advanced Outbound NAT (AON))

          Thanks again

          1 Reply Last reply Reply Quote 0
          • GruensFroeschliG
            GruensFroeschli
            last edited by

            the automatic is enabled by default.
            like i wrote: you need to enable "advanced outbound NAT" (manual outbound NAT rules)

            also see: http://forum.pfsense.org/index.php/topic,7001.msg39657.html#msg39657

            if you are running IPsec clients in your network you might want to enable the static port option.
            (search the forum on this)

            We do what we must, because we can.

            Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

            1 Reply Last reply Reply Quote 0
            • S
              Sylhouette
              last edited by

              Sorry i need to read better !!
              Thanks for the info.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.