Problem bridge two interfaces
-
i have a system with 3 interface
on esxi 5.5
wan: 80.10.10.10
lan : 192.168.1.1
opt1: nonei want bridge two interfaces ( lan and opt1)
1- create a bridge (bridge0) and assigne two interfaces (lan and opt1)
2- system -> advanced -> system tunable ->
change net.link.bridge.pfil_member to 0
change net.link.bridge.pfil_bridge to 1
3- in firewall rule float and lan and opt1 pass traffic any to anywhat problem when connected pc to opt1 (192.168.1.10) cannot ping and access to 192.168.1.1
thanks alot
-
First thing to check is Status: System logs: Firewall to see if the traffic is being blocked.
That said ;), I think your floating rule is being applied to OPT1 and LAN interfaces (the members), but when you set net.link.bridge.pfil_bridge=1 and net.link.bridge.pfil_member=0 you're telling the firewall to filter the bridge, not the interfaces. So the floating rule isn't matching. (f you invert your net.link.bridge.pfil_ settings, it might work)
Or…
The recommended procedure for version 2.x is to assign the bridge as an interface and assign the IP address to the new Bridge Interface. See this post for the summary: https://forum.pfsense.org/index.php?topic=38042.msg196370#msg196370
1: Interfaces –> assign --> bridges.
2: Create a bridge and add all interfaces you want as member.
3: Interfaces --> assign
4: Assign the bridge you just created. The bridge is treated like a normal interface. Configure IP's on this interface
(5:) Assign the interfaces which are member of the bridge. Set their IPs as "none".
(6:) Create firewall rules on the member-interfaces of the bridge to allow traffic.More detail: https://forum.pfsense.org/index.php?topic=20917.0
That said (again) ;), I used the book. It's got an entire chapter devoted to bridging.