Belkin wireless router not able to forward traffic to pfsense same subnet
-
The router shouldn't be routing at all. It should be connected via a LAN port to pfSense and have DHCP disabled.
-
Exactly, the router doesn´t have gateway option, so it give its own IP as a gateway and try to route through WAN interface.
You must do as doktornotor say, disable the dhcp server on belkin router, then conect pfsense´s lan port on a LAN port in the router, in this way you will see all clients (wired or wireless) as clients of the dhcp server of your pfsense.
-
Hi Thanks guys ,
As you guys said , pf sense lan interface is connected to the lan port of the belkin router.
I disabled the DHCP (the issue was wireless devices were not getting ip's assigned)
I had no other option except to manually assign ip's to android and ipad .
below is the configuration on adroid and ipad device :
manually assigned ip beyond the dhcp range of the belkin router on wireless devices.
pfsense lan ip as the gateway on wireless devices.
initially i assiged belkin router address (192.68.2.1) as dns on the wireless devices (disabled all the references to dns on the belkin router , just ticked on the dns assigned by isp option ) , puzzling thing was all the android devices and ipad were able to access the net for around 2-3 hours and suddenly with the same configuration they were not able to get to the net ) i could'nt figure out the logical reason.
Finally keeping everything else same , i assigned wan gateway router ip (on a different subnet - 192.168.1.1 , wan interface of pfsense is connected to this router )as dns on android and ipad , rebooted the pf sense machine and everything seems to be working seamlessly for the past 5-6 hours without a break. if my logic is right , all the wireless devices -192.68.2.** is hitting pfsense lan interface 192.168.2.9 which has been specified as the gateway and then reaching wan router (192.168.1.1) through pfsense wan interface ..
hope tomorrow morning i don't get a surprise where in this config goes in for a toss…
Only issue is since dhcp is disabled , i need to assign manual ip's to all wireless devices on the subnet.
Thanks a ton for the help guys , trust the above info is useful for some one else in the forum.
Raghu
-
Finally keeping everything else same , i assigned wan gateway router ip (on a different subnet - 192.168.1.1 , wan interface of pfsense is connected to this router )as dns on android and ipad , rebooted the pf sense machine and everything seems to be working seamlessly for the past 5-6 hours without a break. if my logic is right , all the wireless devices -192.68.2.** is hitting pfsense lan interface 192.168.2.9 which has been specified as the gateway and then reaching wan router (192.168.1.1) through pfsense wan interface ..
Huh?
https://forum.pfsense.org/index.php?topic=81014.msg442131#msg442131
-
Hi Derelict,
thanks for the link , i saw the attached diagram , my config here is literally the same ,
nothing connected to the wan port on the wifi router ,
lan interrace of pfsense going to lan port of the wifi router ,
wan interface of pfsense going directly to a port on the WAN gateway router .(PF Sense WAN Interface - 192.168.1.2/24 WAN Gateway -192.168.1.1/24)
LAN ip of wifi router and lan interface of pfsense are on the same subnet (WIFI router -192.168.2.1/24 PFSense -LAN -192.68.2.9/24 ) LAN ip of the wifi router is beyond the DHCP range (2-100) .
I had disabled DHCP on the wifi router and made it an Access point , nothing worked.
I have to try the other option which has been mentioned in the other post to disable firewall and DNS.
Right now with static ip config , its working for me .
I just want to achieve the following :
After disabling DHCP on wifi router , is there a way where in wifi devices on my home nework have dynamic IP's assigned from my Wifi router or more aptly pfsense lan interface or is manual static ip configuration , the only way out ??
Regards.
Raghu
-
Thanks guys .
Solved . I enabled DHCP server on the pfsense LAN interface and it has started assigning ip's to wifi devices , DHCP is diabled on the wifi router.
Raghu
-
Heh. Yeah, no IPs are issued when DHCP server is disabled, lol.
-
What do you mean you have to be running a dhcp server on your network to get IPs assigned?? That is a very important nugget of information to file away in the important things to know file cabinet!! ;)
-
Dear friends ,
Initial struggle and doubt while configuring the AP with pf sense was , if the pf sense machine is going to be on the same subnet or a different subnet vis a vis the wifi router , how is the packet going to reach pf sense lan interface from the Wifi Router.
Most of the drawings i had come across , just talked about disabling the DHCP on the Wifi Router and none of them was specifying to UP the DHCP server on the pf sense box LAN interface , (which is sort of quintessential for ip assignment to wifi devices).
Thus my zapped out brain at that time was wondering , are they referring to wireless access as a functionality and ip assignment being manual . That led me down the path of assigning manual static ip's to wifi devices ,
Only doubt remaining at that instance was how is the WIFI router going to forward the packet to pf sense box (routed/bridged ???) since my wifi router did not have a gateway option , i specified the gateway ( pfsense lan ip )on static ip config of wifi devices and things started working .
After all this stuff , my sixth sense spark told me that !!!!, they have been taking ip assignment to wifi devices as given and the only dhcp server remaining in the subnet was pf sense box , that led me to enabling dhcp sever on the pfsense box ..and thus Eureka…
Regards.
Raghu
-
if your AP does not have a gateway option for its lan, all that means is you would not be able to manage it from a different network. AP bridge wifi to wired, they are layer 2 devices - this is what an AP is ;)
I would guess this is not mentioned in many guides in using a wifi router as AP since its pretty much basic understanding of what an AP is ;)
If you did not have a dhcp server running on this network segment, how would you think a client would get an IP on that segment?
