  • I'm having some issues with setting my WAN as a static IP, everything on the LAN won't connect to the internet. All LAN computers can get to the pfSense box and get an IP.

    My ISP gives me the following as static:

    Subnet: (Which is /29, I think..)

    I have my LAN IP as: with DHCP from

    From what I gather, it might be a DNS issue, every time I do a test DNS lookup on pfSense it comes back with no response and says 0 as the response. If I ping an IP, it times out.

    What I've checked:
    -Setting gateway on general setup
    -DNS servers are specified as and
    -No rules setup on the firewall
    -No packages installed

    Any help would be appreciated, as I'm stumped!  >:(

    Your isp gives you private address? rfc1918 space?  IP:

    You sure about that??  Can you ping your gateway IP on pfsense  Did you uncheck the block rfc1918 on your wan?

    It's probably not a DNS issue if you can't ping IPs either. Blocking private networks on WAN shouldn't stop LAN side clients pinging out.
    I would guess either some upstream problem or maybe a routing problem. Is the system default gateway set correctly? Did you set a gateway on LAN? (a common mistake).

    More info please.  :)


  • Yes, this ISP is in a rural area and it looks like networking designed by a high school kid; they give us a IP address and then port forward across their setup to give me a "static" outside address, which is crazy but that's what I've got.

    I double checked and block rfc1918 is unchecked on WAN and LAN.

    The system default gateway is set to with the LAN gateway set to None.

    Pinging the gateway also times out, so I'm still lost…

    Are you pinging from the pfSense diagnostics gui or a client on the LAN?
    Have you tested the wan connection with some other device? Does your ISP do MAC filtering?


    If pfsense can not talk to its own gateway, not sure how you expect it to get to you to, etc  You have a bad cable, you got bad info?  They are going mac filtering - what device are you plugging into?  Did you power cycle it between changing devices connected to it?

    Cable modems for example almost always need to be reset when you change the mac connected to it.

  • with a /29 you would have - available in your subnet.  Try pinging each and every one except the address your WAN is set to.

    For the rest-  a great number of small rural ISP's use private space on their networks between their routers and customer WAN.

