Multiple subnets on the lan

  • Hi all, I'm in the process of building a small wireless ISP (WISP). I'm using a PFSense box as my core router/NAT. I currently have 2 tower locations with plans to add more in the coming months. currently the network is flat, bridged. All addresses to customers are in the network on the lan side of my PF box. My plan is to add routers at each tower site with PPPoE and a radius server to control network broadcast storms. Differenet subnets for each tower's customers and the PtP backhauls. I have the routers configured with OSPF and have the OSPF package installed on PFSense. I can ping all the different addresses of the various subnets from the subnet and I can ping from those subnets ( and currently) to the subnet. However, I cannot ping (pfsense box) from any of the other subnets. Doing a packet capture on the PFSense box shows that the packets are reaching it. What is going on ? I created additional firewall rules and Nat rules for these subnets (copied the default rule for network and just changed the network and subnet mask data.)

    It's rather important that I get this situation remedied. I don't want to have multiple NAT levels.. I need a fully routed network for this to function properly. Any help would be much appreciated.
    ![firewall rules.PNG](/public/imported_attachments/1/firewall rules.PNG)
    ![firewall rules.PNG_thumb](/public/imported_attachments/1/firewall rules.PNG_thumb)
    ![nat rules.PNG](/public/imported_attachments/1/nat rules.PNG)
    ![nat rules.PNG_thumb](/public/imported_attachments/1/nat rules.PNG_thumb)

  • Banned

    Dude, for starters, adding a TCP rule does NOT allow ping… It uses ICMP. Sigh. Other than that, I don't have time for this, but - you don't want NAT, yet you are adding a gazillion of manual NAT stuff. You want routing, yet you did not add any routes/GWs to those subnets you have created on some towers or god knows what?

Log in to reply