[SOLVED] Need help setting up second Subnet.



  • Hi all,

    I have a four-port MB. This is my current setup:

    igb0 = WAN
    igb1 + igb2 = birdge0 =LAN, 192.168.1.1/24
    igb3 =OPT = 192.168.10.1/24

    I would like to set up the LAN through openvpn client and OPT through WAN. The LAN works as expected. But the OPT has no internet, The DHCP server works, but I can't access https://192.168.10.1:443

    here are some screen shots. Thanks!







  • LAYER 8 Netgate

    Why are you bridging?

    Without any rules on OPT you won't be able to get anywhere.

    Duplicate the rules on LAN but substituting for OPT.

    That LAN net to LAN net rule is useless.



  • @Derelict:

    Why are you bridging?

    Without any rules on OPT you won't be able to get anywhere.

    Duplicate the rules on LAN but substituting for OPT.

    That LAN net to LAN net rule is useless.

    Thanks for the quick reply.

    I tried to add the similar rule to OPT port. It didn't work. I will give it another try.

    I have a NAS in the basement along with the router. I dont want to buy another switch. And that extra port is not being used anyway. So I bridged them to create two LAN ports to keep the router and NAS in the same subnet.

    for whatever reason, without the LAN net to LAN net rule, some of the devices (I can't remember if all devices) can not access the NAS once the openvpn client is up and running. I have logitech media server and Plex server and other servers running in the NAS. Once openvpn client is running, client hosts can't access the servers without this rule. It works well.

    Attached is the screenshot of the setting now.

    Update. It works now. I don't know why it didn't work last time. I restarted the router this time.

    Thanks for the help.



  • LAYER 8 Netgate

    I have a NAS in the basement along with the router. I dont want to buy another switch. And that extra port is not being used anyway. So I bridged them to create two LAN ports to keep the router and NAS in the same subnet.

    Just get a damn switch. Especially to connect to your NAS. pfSense is not a switch.



  • @Derelict:

    I have a NAS in the basement along with the router. I dont want to buy another switch. And that extra port is not being used anyway. So I bridged them to create two LAN ports to keep the router and NAS in the same subnet.

    Just get a damn switch. Especially to connect to your NAS. pfSense is not a switch.

    Thanks. Will consider.
    any comments why the LAN net to LAN net worked?


  • LAYER 8 Netgate

    Yeah because when you're bridging you have to get everything just right. Because you're trying to use a router as a switch, you might have to tell the filter to let traffic into an interface for the same subnet if you built the bridge wrong.

    Just get a switch. A $24 one from Fry's will be better than a bridge. Complete waste of a good router interface.


Log in to reply