[ Solved ] WAN Connected , No LAN Internet Access



  • Hello ,
    I've setup pfsense box with only 1 NiC [ x2 VLANS ]

    re0 ( LAN10  , WAN20 )
    and Everything works fine

    but after rebooting pfsense
    i get no internet access on lan side !

    pfsense can check for updates , can download packages via command line , ping etc ..
    i can access webgui too from lan clients and ping other lan clients but no internet access for the whole lan net .

    rebooted for second time didn't help ..  :-\

    reset to factory , setup vlans again every thing works fine and got internet access .
    rebooted pfsense , i get again no internet access on lan
    note that all other settings are default , I just have setup vlans .
    couldn't figure out the problem , why do i have internet but after 1 reboot i have to reset to factory to get internet again ..
    very strange .

    here's the diagram and switch settings :

    Van 10 lan
    Van 20 wan
    Port 1 2 3 untagged 10
    Port 4 tagged 10 and tagged 20
    Port 5 untagged 20

    Pfsense :
    Lan int : VLAN10 192.168.1.1/24
    Wan int : VLAN20 DHCP
    tried to set modem in bridge mode and set-up ppoe WAN , same problem , no internet after the first reboot .



  • Hello,

    please check some things:

    • "Block private networks" in interface settings has to be unchecked.

    • Do you have firewall rules on LAN interface which permit access to the internet. By default there is an allow-any-to-any rule, but since you have set up manually your LAN as VLAN, you have also to set the rule manually.

    • Ensure that the Outbound NAT rules are set correctly. Or post a screenshot.



  • The port on the switch would go down and up, if its a cheap switch might confuse it. is it a cisco switch? i would personally connect the modem to the router and forgo vlans if you can help it. even you can still run rj-11 over the same rj-45 ports if thats the issue. Or maybe you only have one nic in pfsense? do the port 1 and port 2 computers need to lease an ip from the adsl modem? for that i would use 1:1 nat.

    You could try making the gateway of the LAN network the vlan interface on the switch… that way it wouldnt confuse the clients when it goes down? Does the NIC have to support vlans in hardware / driver and does it? or does pfsense just always support vlans on all cards?

    i dunno im just guessing.



  • Thanks " viragomann "
    for your replay , but all of them are set correctly , even with manual vlans the outband/firewall rules created automatically .
    otherwise it shouldn't work the first time I set them up .

    
    @ipfftw:
    
    > The port on the switch would go down and up, if its a cheap switch might confuse it. is it a cisco switch? i would personally connect the modem to the router and forgo vlans if you can help it. even you can still run rj-11 over the same rj-45 ports if thats the issue. Or maybe you only have one nic in pfsense? do the port 1 and port 2 computers need to lease an ip from the adsl modem? for that i would use 1:1 nat.
    > 
    > You could try making the gateway of the LAN network the vlan interface on the switch… that way it wouldnt confuse the clients when it goes down? Does the NIC have to support vlans in hardware / driver and does it? or does pfsense just always support vlans on all cards?
    > 
    > i dunno im just guessing.
    
    I'm guessing too that you said some wrong ideas about how and what should work .
    Yes , only 1 nic and it supports vlans .
    TP-Link easy smart switch .
    
    with one nic i can't do what you expect without vlans since you need at least to interfaces wan/lan
    and couldn't find a way to create sub-interface also even if i was able to , it might lead to bad network issues so vlans is the only solution I could use .
    & thanks for your replay .


  • Solved :
    It was hard disk issue , bad sectors and couldn't read files correctly .
    since reset to factory defaults makes the new data applied to ram directly .. it's OK .
    but after reboot and load settings from Disk ..  Nothing is OK .
    I noticed it won't read queue statistics in webgui says I have to set traffic shaper while it's already set .
    and even after resetting to factory defaults , some rules doesn't work as expected after setting them up.
    also by many reboots I noticed there is a fast warning messages about mounting disk in pfsense boot screen .

    now everything works fine after replacing the disk .

    Thanks anyway  :) .


Log in to reply