OPT1 as second LAN interface?
-
So after a few day with help from community members I finally got my firebox x700 set up with pfsense,but… How do I configure OPT1 to also act as a LAN port ?
I have the WAN set to re0, default LAN on re1, im trying to set up OPT1 on re2 to allow internet access. I have enabled the interface and have set the rules on the firewall (i think) and its still not working.
Im new to the software so any help will be much appreciated.
Many thanks
Mark
-
Check Outbound NAT rules.
-
Post your OPT1 rules.
If you have automatic outbound NAT set (the default) that shouldn't be a problem. If you changed to manual outbound NAT, change it back to automatic.
-
…configure OPT1 to also act as a LAN port?
What do you want to do exactly?
With "OPT1 as LAN" you mean to have an additional port with the same subnet as LAN (aka bridged) or configure OPT1 as a different subnet?
-
Guessing that you want OPT1 as a separate subnet, give OPT1 some IP address/netmask that makes a different subnet. Automatic NAT will do its thing for you. Add rules aon OPT1 allowing traffic source OPT1net.
I have a Firebox just like that, it has 1 WAN and 5 different LAN subnets - works easy. -
Post your OPT1 rules.
If you have automatic outbound NAT set (the default) that shouldn't be a problem. If you changed to manual outbound NAT, change it back to automatic.
My OPT1 rules are a copy of the default LAN rules, only set to the OPT1 network
-
Can you ping the OPT1 interface from something on OPT1?
There's really not much to it. Pass ip from OPT1 net to any plus automatic outbound NAT.
If you don't post screen shots we have to take your word for it that everything is perfect and come to the conclusion your firebox is broken.
-
Ok, Ill get some screenshots up :)
-
-
OPT1 Config
OPT1 Firewall Rules
Outbound Nat
OPT1 DHCP Settings
-
What do you want to do exactly?
With "OPT1 as LAN" you mean to have an additional port with the same subnet as LAN (aka bridged) or configure OPT1 as a different subnet?
I want to the OPT1 interface to act like another lan port, like the deafult LAN interface
-
Kindly read the comment under the IPv4 Upstream Gateway option.
-
Kindly read the comment under the IPv4 Upstream Gateway option.
Sorry bout that guys ….
-
I removed the gateway from OPT1 but I still cant connect to the internet or ping websites.
Any ideas?
-
What's that /23? What's your LAN set up like?
-
What's that /23? What's your LAN set up like?
Here is the LAN setup
(please note I have never used this software before and am fairly new to the world of computer networking)
-
You cannot have two interfaces on a same subnet (OPT1: 192.168.100.6/23, LAN: 192.168.100.1/24).
Go read the docs about bridging: https://doc.pfsense.org/index.php/Interface_Bridges
Set both LAN and OPT1 IPv4/IPv6 to None
Assign the bridge to LAN and configure the IPs there. -
You cannot have two interfaces on a same subnet (OPT1: 192.168.100.6/23, LAN: 192.168.100.1/24).
Go read the docs about bridging: https://doc.pfsense.org/index.php/Interface_Bridges
Set both LAN and OPT1 IPv4/IPv6 to None
Assign the bridge to LAN and configure the IPs there.Ok, I shall do that now, thank you for your help :)
-
And instead of bridging router interfaces, just get a switch. Bridging does not save a port, it wastes a perfectly good router port.
-
And instead of bridging router interfaces, just get a switch. Bridging does not save a port, it wastes a perfectly good router port.
So I can plug the default LAN straight into the HP ProCurve switch I already have?
