Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WAN incoming is block

    Scheduled Pinned Locked Moved Off-Topic & Non-Support Discussion
    6 Posts 4 Posters 5.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      heirkeyso
      last edited by

      Dear All,

      I install pfsense 2.1 and already configure the WAN(PPPOE) and LAN using the wizard. I can ping already the pfsense machine using the other computer. My concern is the internet. on the dashboard I can already see the public IP address given by the ISP but when I try to ping the google using the webconfiguration and the using the pfsense machine, the result is timeout. I noticed the under the firewall rule on the wan tab is has a message 'no rules are currently defined for this interface all incoming connection on this interface will be blocked until you add pass rule pfsense'. How do I to configure this? Kindly help me with this. I also attached the screen shot of this.

      Thank you in advance.
      pfsense.jpg
      pfsense.jpg_thumb

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned
        last edited by

        Yes, WAN is blocked for incoming traffic. The whole purpose of the firewall. Plus, you are looking at completely wrong interface if you are trying to ping Google from your LAN. Those rules go to LAN.

        1 Reply Last reply Reply Quote 0
        • A
          agensmith
          last edited by

          True but he 's got to add one allow rule for wan too.Right?? :S

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned
            last edited by

            No. You add rules to interfaces where the traffic first hits the firewall, i.e., LAN in this case.

            1 Reply Last reply Reply Quote 0
            • A
              agensmith
              last edited by

              It seems that i miss something…. :(

              1 Reply Last reply Reply Quote 0
              • P
                phil.davis
                last edited by

                pfSense is a stateful firewall. When a connection is successfully started, a state is created. Any traffic matching that state in BOTH directions is allowed. So when a LAN client connects to google.com a state is created and the reply trafic from google.com is allowed into WAN and router back to the client.

                It all works out-of-the-box with the default allow any rule on LAN.

                What else have you done in seting this up?

                Do NOT put a gateway on LAN. Gateway only goes on WAN.

                As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.