Three subnets two only work for interenet , but I want internal to work as well
-
I have three LAN subnets 10.1.1.0/24 10.1.2.0/24 10.1.3.0/24 , well more actually, but they fall outside the scope of this issue.
all wireless devices(tablets, phones…) get assigned to the 10.1.3.0/24 via reservations from a DHCP superscope
all server equipment (web, email...)fall in the 10.1.1.0 /24
any phone or tablet using the 10.1.3.0/24 can access the outside internet without issue.
my problem is they cannot reach the internal 10.1.1.0/24 .
That said they do "appear" to have the ability to ping, but tcp traffic fails, port 80, 443 . Cant send email, or pull up internal websites .
I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .
-
I have pfsense configured with a LAN of 10.1.1.1 /16 and I have an Virtual IP type "IF Alias" of 10.1.2.1/24 and 10.1.3.1/24 on the same interface .
How on earth does this make any sense?
-
which part has you confused?
under interfaces the LAN is set with a static IP of 10.1.1.1 and the subnet is a /16
under firewall and Virtual IPs , I have added two virtual IPs 10.1.2.1 and 10.1.3.1 but have a subnet of /24
the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway, and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway
-
the idea is that any device on the 10.1.2.0/24 will have 10.1.2.1 for its gateway, and any device on the 10.1.3.0/24 will have 10.1.3.1 for its gateway
Afraid I have to repeat myself: How on earth does this make any sense and what is the point here?
-
Originally my network had just one subnet the 10.1.1.0 /24 , but I ran out of IPs
As such I added the 10.1.2.0/24 to accommodate more device.
I guess I could have done a /22 , but I was under the impression the router could connect the two subnets, and giving me the option to apply firewall rules to the traffic between each.
just recently I have run out of IPs again, so I have added the 10.1.3.0/24
also what I find interesting is I am only having issues with mobile devices. this IP scheme has been working with out issues on my PC's and printers.
-
In doing more testing, I have discovered that it only appears to be android devices failing, I have only tested Samsung devices so far. I tested a apple iPad on the 10.1.3.0/24 and a laptop as well, both were able to access everything on the 10.1.1.0/24 . so this appears to be an android issue ????