Three subnets two only work for interenet , but I want internal to work as well



  • I have three LAN subnets 10.1.1.0/24 10.1.2.0/24 10.1.3.0/24  , well more actually, but they fall outside the scope of this issue.

    all wireless devices(tablets, phones…) get assigned to the 10.1.3.0/24 via reservations from a DHCP superscope

    all server equipment (web, email...)fall in the 10.1.1.0 /24

    any phone or tablet using the 10.1.3.0/24 can access the outside internet without issue.

    my problem is they cannot reach the internal 10.1.1.0/24 .

    That said they do "appear" to have the ability to ping, but tcp traffic fails, port 80, 443  . Cant send email, or pull up internal websites .

    I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .


  • Banned

    @parsalog:

    I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .

    How on earth does this make any sense?



  • which part has you confused?

    under interfaces the LAN is set with a static IP of 10.1.1.1 and the subnet is a /16

    under firewall  and Virtual IPs , I have added two virtual IPs 10.1.2.1 and 10.1.3.1  but have a subnet of /24

    the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway,  and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway


  • Banned

    @parsalog:

    the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway,  and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway

    Afraid I have to repeat myself: How on earth does this make any sense and what is the point here?



  • Originally my network had just one subnet the 10.1.1.0 /24 , but I ran out of IPs

    As such I added the 10.1.2.0/24 to accommodate more device.

    I guess I could have done a /22 , but I was under the impression the router could connect the two subnets, and giving me the option to apply firewall rules to the traffic between each.

    just recently I have run out of IPs again, so I have added the 10.1.3.0/24

    also what I find interesting is I am only having issues with mobile devices. this IP scheme has been working with out issues on my PC's and printers.



  • In doing more testing, I have discovered that it only appears to be android devices failing, I have only tested Samsung devices so far. I tested a apple iPad on the 10.1.3.0/24 and a laptop as well, both were able to access everything on the 10.1.1.0/24 . so this appears to be an android issue ????


Log in to reply