Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Routing Problem.

    Routing and Multi WAN
    3
    4
    696
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      schimmelpfeng last edited by

      Good afternoon staff,

      I have a problem internal routing here.
      I have 4 NICs, 2 WAN and LAN 2.
      The 2 networks typically browse the internet, but one can not get at the other.
      I have created the rule 2 interfaces LAN allowing access from 2 networks normally, but when I send a traceroute on my machine it can not get from one network to another.

      The two networks can reach pfSense without problem.

      Thank you!

      1 Reply Last reply Reply Quote 0
      • H
        heper last edited by

        both LANs can get to the internet? But they can not contact  each other ?

        –-> create a firewall rule on LAN1: ALLOW PROTO:any SRC: lan1-subnet  DST: lan2-subnet
        ---> create a firewall rule on LAN2: ALLOW PROTO:any SRC: lan2-subnet  DST: lan1-subnet

        But both rules on TOP of the rule list to start.  (you can experiment with lowering them afterwards)

        1 Reply Last reply Reply Quote 0
        • S
          schimmelpfeng last edited by

          Thanks for Reply.

          It's working now.
          I create this 2 rules and 2 more rules.

          –-> create a firewall rule on LAN1: ALLOW PROTO:any SRC: lan1-subnet  DST: lan2-subnet
          ---> create a firewall rule on LAN1: ALLOW PROTO:any SRC: lan2-subnet  DST: lan1-subnet
          ---> create a firewall rule on LAN2: ALLOW PROTO:any SRC: lan2-subnet  DST: lan1-subnet
          ---> create a firewall rule on LAN2: ALLOW PROTO:any SRC: lan1-subnet  DST: lan2-subnet

          Thanks for the help!!!  ;)

          1 Reply Last reply Reply Quote 0
          • Derelict
            Derelict LAYER 8 Netgate last edited by

            Rules 2 and 4 are never fired.  In general, pfSense rules apply to traffic coming IN (received by) an interface.  Unless you've got a very, very strange config, LAN1 will never see traffic coming into it with a LAN2-subnet source address.  Nor will LAN2 ever see traffic coming into it from a LAN1-subnet source address.

            They won't hurt anything but they're unnecessary and add clutter to the ruleset.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense Plus
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy