Best way to connect ISP Router to Pfsense
-
Ok, so bridge or pass-through.
Some screenshots:
1 Advanced setup
2 Layer 2 interface
3 eth interface
4 eth interface > add
5 wan service
6 wan service > edit
So, I think just check "WAN Service" > "Bridge PPPoE Frames Between WAN and Local Ports", disable rest of ports and wifi, right?
-
I understand what you say BlueKobold ;) I will change the DHCP, but now I want to put my isp router in bridge mode or "pass-through" and I don't know how to do it.
-
So, I think just check "WAN Service" > "Bridge PPPoE Frames Between WAN and Local Ports", disable
rest of ports and wifi, right?Yes if the router is in the bridge mode it is not acting any more likes a router, but is acting as a pure modem.
So also SPI firewall and NAT should be disabled.I understand what you say BlueKobold ;) I will change the DHCP, but now I want to put my isp router in bridge mode or "pass-through" and I don't know how to do it.
Would be really fine to know the exactly model you have in this game.
Edit:# I found the router manual, but only seen it in Spanish language that I am not speaking and reading.
-
The router is a NuCom NU-GAN5.
-
Unless someone on here has experience of that device, you'll need to hunt down some instructions online to guide you through putting the device into bridge mode, but even if its in bridge mode, make sure the wifi is shut off as this can still be a way onto the device in some cases.
-
The router is a NuCom NU-GAN5.
Well, did you test as you intended ? Result ?
Considering an exchange of "your router"-type with the versatile DrayTek V-120 ?
-
Hda, yes, I'd forgotten to post a possible solution… My memory tricks me sometimes. :)
KipTry, considering you have a proper already set up and working ATM link in the "Layer 2" menu, you can try going to the "Wan service" option, remove the ppp0 connection you already have and add a new one. At this time, check if you can create a new one in "Bridging" and attached to your atm0 connection.
If you are able to do it, a connection called br_0_0, br0 or something like it, will be created. Make sure you have your router not providing a DHCP as said before by our fellows.
Now, maybe everything is ok and you'll be able to create a pppoe connection in your pfSense box and have your public IP, provided by your ISP, facing the PPP connection. Whether is that what you want.
In the end, it's just a guess, ok? :)
I hope this helps. -
Thanks guys! I'll test it tonight.
hda, I'm not thinking in DrayTek V-120 because I'm going to change to optical fiber in September. I understand with optical fiber I just need to connect the ONT to Pfsense.
-
Well, I guess it is working:
1. I disabled WiFi, DHCP
2. In wan services: check "Bridge PPPoE Frames Between WAN and Local Ports" and uncheck NAT and Firewall.Pfsense is working well (I configured ppoe user and password), with connectivity and internet. But I can't access to the ISP router - 192.168.1.1 (even connecting directly pc-isp router), why? is it normal?. Anyway I don't mind.
In Status > Interfaces, I see: IPv4 address 47.X.X.X and Gateway IPv4 87.X.X.X. ipv4 address is my pulbic IP, but Gateway ipv4?
Could you help me to understand this output of tracert command?
tracert www.pfsense.org 1 <1 ms <1 ms <1 ms pfSense.MyDomain [192.168.2.1] 2 13 ms 12 ms 12 ms static-xx-xx-....ipcom.comunitel.net [87.x.x.x] 3 13 ms 13 ms 13 ms 172.29.8.110 4 12 ms 12 ms 13 ms 172.29.8.109 5 * * * Timeout 6 * 13 ms 13 ms 195.10.44.1 7 32 ms 32 ms 32 ms ae7-xcr2.prp.cw.net [195.2.31.245] 8 32 ms 32 ms 32 ms ae24-xcr1.ptl.cw.net [195.2.24.154] ... 18 147 ms 147 ms 146 ms www2.atx.pfmechanics.com [208.123.73.69]
I don't undrestand the line 2, and 3-4 are private IPs?.
I'm going to keep this setup and start to play with pfsense. In september I'll change to optical fiber, so I'll focus on setup the ONT properly.
Thanks!
-
Congratulations. Yes line 2 is gateway of your ISP as next hop from pfSense-box. Indeed you cannot simply connect to MoDem anymore. If you want WLAN then buy/install an AP onto your switchbox on the pfSense-LAN.
-
192.168.1.1 (even connecting directly pc-isp router), why? is it normal?.
Yes it is normal, there are modems sorted with two LAN Ports one is a ordinary one likes
yours and the second one is often a RJ45 console port to surround this matter.But anyway you should be happy now, all is running, if you want to use WiFi you should be
likes suggested before buy an external WLAN AP. -
Ok. Yes, I have an AP connected and it's working ;).
Thanks guys! -
@kipTry hi, how did you fix it? I have the same problem, thanks
-
Instead of expecting a reply in a 5 year old thread, why not post your own, stating the problems you're having?